Cybersecurity FAT/SAT Testing: Pitfalls and Wins - SANS ICS Security Summit 2021

preview_player
Показать описание
Everybody knows and understands that factory acceptance testing and site acceptance testing must be done to make sure a project or system has been implemented as agreed within the design specifications.

However, as cybersecurity is more and more important, cybersecurity testing during FAT and SAT test cycles should be performed as well. However, this most of the times not performed due to various reasons.

Or when it is done, it is not done extensively enough to cover everything.

In this presentation the various pitfalls and wins of cybersecurity FAT/SAT testing will be explained further.

After this presentation you will better understand the why, what, when, how and receive information to be able to start a SCADA vendor cybersecurity validation process.

Speaker:
Dieter Sarrazyn, Freelance SCADA/ICS/OT Security Consultant, Secudea
  1. SANS ICS Security
  2. SANS Institute
  3. ICS
  4. SANS ICS
  5. SANSICS
  6. Industrial Control Systems
Рекомендации по теме
Cybersecurity FAT/SAT Testing: 0:39:55

Cybersecurity FAT/SAT Testing: Pitfalls and Wins - SANS ICS Security Summit 2021

DEF CON 29 0:25:11

DEF CON 29 ICS Village - Dieter Sarrazyn - Fortifying ICS Hardening and Testing

Fortifying ICS - 0:25:11

Fortifying ICS - Hardening and Testing (Dieter Sarrazyn - Secudea)

Patch the ICS? 0:19:02

Patch the ICS? When, Where, How?

ABB TechTalks: Redefining 0:36:15

ABB TechTalks: Redefining Factory Acceptance Test (FAT)

Lessons from Two 0:31:18

Lessons from Two Years of ICS Security Assessments - SANS ICS Security Summit 2021

The Cybersecurity Lifecycle 0:55:56

The Cybersecurity Lifecycle (IEC 62443) and exSILentia Cyber

Desmos embedded in 0:00:43

Desmos embedded in the Digital SAT!

Integrated System Cybersecurity: 0:57:40

Integrated System Cybersecurity: Understanding and Applying IEC 62443-3-3

How the Best 0:42:46

How the Best Hackers Learn Their Craft

UAT FAT SAT 0:35:37

UAT FAT SAT Why it matters?

Cybersecurity Assessments 0:33:30

Cybersecurity Assessments

How to Use 0:34:28

How to Use Security Architecture to Build a Defensible ICS Network - SANS ICS Security Summit 2021

ASC2020 - Assuring 1:00:30

ASC2020 - Assuring Cybersecurity throughout the Nuclear Supply Chain - Ahmad Salah Ibrahim

2. Control Hijacking 1:27:39

2. Control Hijacking Attacks

Choosing the Best 0:42:30

Choosing the Best Functional Safety and Cybersecurity Certification Path

8. ICS Security 0:35:40

8. ICS Security Standards, Guidelines and Regulations with Jason Christopher

OT-ICS Cybersecurity, Mark 0:59:29

OT-ICS Cybersecurity, Mark Bristow CISA

Safety / Cybersecurity 0:49:12

Safety / Cybersecurity Lifecycle Overview: Part 2 (Design Phase)

Uncovering Hidden Components 0:34:38

Uncovering Hidden Components in ICS Software - SANS ICS Security Summit 2021

(S1) Global Temperatures 7:53:24

(S1) Global Temperatures Plummet to -100°c, A Pack of Instant Noodles Sells for $5,000!

Robert Silvers on 0:41:18

Robert Silvers on the Cyber Safety Review Board

Bristol Cyber Security 0:59:11

Bristol Cyber Security group - lab tour and testbed demo

Cyber Security Recruitment 0:25:32

Cyber Security Recruitment - With Richard Hall

Комментарии
Автор

Very interesting lecture; it is critical to include FAT/SAT as assurance tasks within the project design phase (to establish Asset Integrity and Process Safety requirements).

solimanmahmoud
Автор

We are working currently on an ICS cybersecurity project for an oil and gas company and the manufacturer is performing an integrated FAT (iFAT) remotely (streaming). There will be a replication of the ICS environment.
I'm really concerned and enthusiastic how the performance will go. Have you ever faced such a case?

FadiHasan