ANT0071

Cyberecurity monitoring on industrial facilities

Duration of training: 3 days

start date: Wednesday, November 5, 2025

sign up for a course

description
course

The course material will allow students to study the processes, techniques and tools for monitoring cybersecurity events and incidents at industrial facilities. The course material also covers issues of organizing processes for monitoring cybersecurity events and incidents and integrating them into the overall architecture of corporate cybersecurity.

course audience

Engineers who ensure cybersecurity of industrial infrastructure facilities, as well as engineers who design the cybersecurity architecture of industrial infrastructure facilities. Engineers involved in monitoring and processing cybersecurity events and incidents, as well as engineers involved in digital forensics.

prerequisites

Knowledge of general cybersecurity at the level of the ANT0000 course is required, as well as knowledge of the principles of construction and operation of industrial facilities.

how it works
education

online course

The online course involves group classes with an instructor via video conferencing, in addition, homework and an exam.

for corporate clients

training for corporate clients includes online and self-study courses, as well as additional services required by corporate clients: organizing training plans for client departments, assessing the effectiveness of training, etc.

teacher
course

program
course

• Industrial processes and their management.
• ICS.
• ICS Components: DCS, SCADA, HMI.
• Programmable controllers - PLC - of industrial processes.
• Telemetry.
• Data exchange protocols at an industrial facility.
• Typical architecture of industrial facilities for various industries.
• Cybersecurity threats to industrial facilities.
• Life safety threats.
• Identifying Cybersecurity Threats Using the PHA Methodology.
• Identifying Cybersecurity Threats Using the STRIDE Methodology.
• Construction of a model of cybersecurity threats to an industrial facility.
• Cybersecurity risk management for an industrial facility.
• Logs and network activity information.
• Collection and analysis of network traffic.
• Session Information.
• Network activity statistics.
• Centralized and distributed network monitoring systems.
• Deployment and support of a network monitoring system.
• PLC and RTU monitoring and logging policies.
• Monitoring policies and HMI logs.
• Windows CE audit subsystem.
• Deployment and support of Windows monitoring.
• QNX and VxWorks monitoring and logging settings.
• Linux audit subsystem.
• Deployment and support of Linux monitoring.
• Using flags and beacons in industrial infrastructure for monitoring.
• SCADA monitoring.
• Monitoring Historian databases.
• Enterprise Cybersecurity Architecture.
• Integration of monitoring systems.
• SIEM systems.
• Differentiating cybersecurity events and incidents.
• Confirmation of cybersecurity incidents.
• Handling cybersecurity incidents.
• Digital forensics.

Сourse purchase
options

individual

Cost — $930.00

Group online classes

Unlimited access to all the materials

Live webinars with teachers

Homework

Exam with certificate

Course dates:

pay for the course

corporate

Cost от $930.00

To obtain information about the final cost and clarify the date of the course, please fill out the form.

SUBMIT YOUR APPLICATION

* By clicking “send”, you agree to the Terms of Service And Privacy Policy