当前位置:首页 > 报告详情

免费实现 SANS ICS 5 项关键控制的自动化.pdf

上传人: 可*** 编号:991788 2025-12-07 61页 4.27MB

1、 2025 UtilSec,LLCMichael Holcomb,GRID,CISSP,ISA 2025 UtilSec,LLC 2025 UtilSec,LLCDisclaimer The information provided in this presentation is for informational purposes only.All knowledge obtained must be used for legitimate,authorized purposes.The views written and discussed in this course are those

2、 of the instructor and not any of their employers or other affiliated organizations.NEVER upload information considered sensitive to any online platform!2025 Mike Holcomb 2025 UtilSec,LLCAbout Mike Fellow for Cyber Security at Fluor ICS/OT Cybersecurity Global Lead Founder of BSidesICS and BSidesGre

3、enville CISSP,GRID,GICSP,ISA 62443,GPEN,GCIH,etc.Masters degree from SANS Technology Institute Posts on LinkedIn and YouTube on OT/ICS Cybersecurity 2025 UtilSec,LLCAgenda*Not So Free On Our Last Episode 1.ICS Incident Response 2.Defensible Architecture 3.ICS Network Visibility Monitoring 4.Secure R

4、emote Access 5.Risk-based Vulnerability Management 2025 Mike Holcomb 2025 UtilSec,LLC*Not SO Free 2025 Mike Holcomb 2025 UtilSec,LLCOn Our Last Episode GenAI can be used to create simple and complex cyber security tools Used for both defense and offense Attackers are using GenAI right now to stay ah

5、eadGenAI is not going to let defenders outright beat the attackers You wont lose your job to GenAI.Youll lose your job to someone using GenAI.GenAI is the worst its ever going to be today 2025 Mike Holcomb 2025 UtilSec,LLCThe SANS 5 ICS Critical Controls 2025 Mike Holcomb 2025 UtilSec,LLC1.ICS Incid

6、ent Response 2025 Mike Holcomb 2025 UtilSec,LLC1.ICS Incident ResponseSource:https:/ 2025 Mike Holcomb 2025 UtilSec,LLCFinding Relevant Incidents for Your Sector 2025 Mike HolcombPrompt:2025 UtilSec,LLCWhat about the Water Treatment Industry?2025 Mike Holcomb 2025 UtilSec,LLCWhat about the Water Tre

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要内容概括如下: 1. **作者介绍**:Mike Holcomb,网络安全专家,Fluor公司网络安全部门负责人,BSidesICS和BSidesGreenville创始人,拥有多个网络安全认证。 2. **SANS 5 ICS Critical Controls**: - **ICS Incident Response**:寻找相关行业(如水处理、伊朗核离心机)的ICS事件。 - **Defensible Architecture**:IT与OT之间的防火墙监控,利用AI审查防火墙日志。 - **ICS Network Visibility Monitoring**:提高网络监控,特别是OT/ICS环境。 - **Secure Remote Access**:改进远程访问的安全性和用户体验。 - **Risk-based Vulnerability Management**:使用DHS Patch Urgency Decision Tree进行风险基础漏洞管理。 3. **GenAI在网络安全中的应用**:GenAI可用于创建工具,攻击者和防御者都在使用它,但不会取代人类工作。 4. **其他要点**:包括ICS网络监控的不足、OT/ICS漏洞管理的挑战等。
"ICS安全,你准备好了吗?" "AI时代,网络安全新挑战!" "如何打造坚不可摧的工业控制系统?"
客服
商务合作
小程序
服务号
折叠