Skip to main content
NITA AccreditedAdvancedPhysical + Virtual5 daysTOCF183

Training on Cybersecurity for Industrial Process Control Systems

Learn to secure Industrial Process Control Systems (PCS/SCADA/DCS) with IEC 62443, NIST, and case-driven cybersecurity practices.

Next intake

20 Jul 2026 · Nakuru

View all dates

Duration

5 days

Live instruction

Delivery

Physical + Virtual

Cohort based

Level

Advanced

Working professionals

Certification

NITA reimbursable

For Kenyan cohorts

Language

English

All materials

Overview

About this programme

Industrial Process Control Systems (PCS), including SCADA and Distributed Control Systems (DCS), are critical to sectors such as energy, manufacturing, water, and transportation. As these systems become more connected, they face growing cybersecurity threats that can disrupt operations, compromise safety, and cause major financial losses.

This course equips participants with practical knowledge and skills to secure PCS environments using cybersecurity frameworks, risk management approaches, and industry best practices. Through practical exercises and real world case studies, participants will learn how to identify vulnerabilities, manage cyber risks, and strengthen the resilience of industrial control systems.

Duration

5 Days

Who Should Attend

  • Industrial control engineers and operators

  • Cybersecurity professionals working with SCADA/DCS/ICS systems

  • Risk, compliance, and IT/OT integration specialists

  • Plant managers and operations leaders in energy, utilities, oil & gas, and manufacturing

  • Consultants and auditors in industrial cybersecurity

Learning outcomes

What you'll walk away with

By the end of the course, participants will be able to:

  • Understand the unique cybersecurity challenges in ICS/PCS environments

  • Apply global standards and frameworks (IEC 62443, NIST CSF, ISO 27001) to industrial systems

  • Conduct risk assessments tailored for OT/ICS infrastructures

  • Design layered defense strategies to protect control systems

  • Implement monitoring and incident response in industrial networks

  • Balance safety, reliability, and cybersecurity requirements in PCS

Course modules

What we cover, module by module

Module 1: Introduction to Industrial Cybersecurity

  • Understanding the differences between IT and Operational Technology (OT) security requirements
  • Identifying vulnerabilities in Process Control Systems (PCS), SCADA, and Distributed Control Systems (DCS)
  • Examining the impact of cyber threats on industrial operations and critical infrastructure
  • Case Study: Stuxnet worm and the manipulation of industrial control systems in Iran’s nuclear program
  • Practical: Identify cybersecurity vulnerabilities in industrial control environments

Module 2: Standards, Frameworks, and Regulatory Compliance

  • Overview of IEC 62443, NIST Cybersecurity Framework, and ISO 27001 for industrial systems
  • Aligning cybersecurity controls with safety and regulatory requirements
  • Understanding compliance obligations in energy, utilities, and manufacturing sectors
  • Case Study: Application of IEC 62443 in securing refinery operations in the oil and gas sector
  • Practical: Map industrial cybersecurity controls to regulatory and compliance frameworks

Module 3: Risk Assessment and Threat Modeling for Industrial Control Systems

  • Identifying threats targeting industrial protocols and devices such as Modbus, DNP3, and OPC
  • Applying risk assessment methodologies tailored for OT and ICS environments
  • Integrating hazard analysis with cyber threat modeling to improve resilience
  • Case Study: Colonial Pipeline ransomware attack and its impact on fuel supply operations
  • Practical: Conduct a cyber risk and threat assessment for an industrial control system

Module 4: Defense in Depth Strategies for Process Control Systems

  • Network segmentation and application of the Purdue Model in ICS security
  • Securing remote access and managing patches in legacy industrial environments
  • Deploying intrusion detection and prevention systems within industrial networks
  • Case Study: Ukraine power grid cyberattacks and the importance of layered security defenses
  • Practical: Design a defense in depth architecture for an industrial control environment

Module 5: Monitoring, Incident Response, and Operational Resilience

  • Building industrial Security Operations Centers (SOC) for continuous monitoring
  • Developing incident response and disaster recovery plans for PCS environments
  • Balancing operational uptime requirements with cybersecurity interventions
  • Case Study: Triton/Trisis malware attacks targeting petrochemical plant safety systems
  • Practical: Capstone exercise: Develop an industrial cybersecurity monitoring and incident response framework
Impact

Where the change lands

Organization Impact

  • Strengthened resilience of industrial operations against cyberattacks

  • Improved compliance with global ICS/SCADA cybersecurity standards

  • Reduced downtime and financial losses from disruptions

  • Enhanced IT/OT collaboration within the enterprise

Individual Impact

  • Ability to identify and mitigate ICS-specific cyber risks

  • Hands-on knowledge of frameworks like IEC 62443 and NIST CSF for ICS environments

  • Enhanced career growth in the growing industrial cybersecurity field

  • Confidence in handling both technical and governance aspects of PCS security

Dates and locations

Upcoming intakes

Every intake is limited to a small cohort. Booking closes when a date fills or three weeks before the start, whichever comes first.

Full calendar
FAQs

Common questions.

Still not sure? Send us a note and a facilitator will get back to you within a business day.

It covers both—participants gain technical insight into PCS/ICS security while also addressing governance, compliance, and risk management.

Course finder

Find the right course for you

Prefer to talk it through? Send us an enquiry and a facilitator will scope a fit within a business day.

For corporate teams

Training 10+ professionals?

We deliver Training on Cybersecurity for Industrial Process Control Systems in-house at your offices, at a venue we arrange, or fully virtual. Customise the curriculum against your KPIs, and get a bespoke price for the cohort size you need.