ICS Deep Dive
RCCE students will learn Industrial Control System security including PLC programming security, DCS architecture protection, safety instrumented system integrity, industrial protocol analysis, and ICS-specific incident response. RCCE students will learn to assess ICS environments for cybersecurity vulnerabilities, implement defense-in-depth for industrial control networks, monitor ICS communications for unauthorized commands, detect and respond to attacks targeting programmable logic controllers and distributed control systems, maintain safety system integrity during cyber incidents, apply ICS security standards including IEC 62443 and NIST SP 800-82, and bridge the gap between IT security teams and OT operations staff. This deep-dive course provides comprehensive technical coverage that goes beyond surface-level understanding. Building on core knowledge, RCCE students will learn to master the nuances, edge cases, and advanced configurations that separate competent practitioners from true experts. Students will engage with complex real-world scenarios and gain the depth of knowledge required to troubleshoot difficult situations, mentor junior team members, and make architectural decisions with confidence.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing ICS Deep Dive
- Execute hands-on tasks for ics deep dive
- Execute hands-on tasks for industrial control system security
- Explain ICS Fundamentals Overview fundamentals — covering Systems controlling physical, Availability over confidentiality.
- Execute hands-on tasks for why ics security matters — covering Systems controlling physical.
- Design a scalable privilege management architecture with policy and enforcement
- Execute hands-on tasks for level 5 — enterprise network
- Execute hands-on tasks for level 4 — site business planning
- Execute hands-on tasks for level 3 — site operations
- Execute hands-on tasks for level 2 — area supervisory
- Execute hands-on tasks for ics components deep dive — covering Supervisory Control and Data.
- Execute hands-on tasks for plc / rtu — covering Programmable Logic.
- Execute hands-on tasks for iec 61131-3 languages — covering Ladder Diagram (LD).
| Module 01 | ICS Deep Dive |
| Module 02 | Industrial Control System Security |
| Module 03 | ICS Fundamentals Overview |
| Module 04 | Why ICS Security Matters |
| Module 05 | ICS Architecture: Purdue Model |
| Module 06 | Level 5 — Enterprise Network |
| Module 07 | Level 4 — Site Business Planning |
| Module 08 | Level 3 — Site Operations |
| Module 09 | Level 2 — Area Supervisory |
| Module 10 | ICS Components Deep Dive |
| Module 11 | PLC / RTU |
| Module 12 | IEC 61131-3 Languages |
| Module 13 | PLC Scan Cycle |
| Module 14 | Authentication Gaps |
All hands-on labs run on Rocheston Rose X OS. Students practice ics deep dive by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for ics deep dive
- Lab 2: Execute hands-on tasks for industrial control system security
- Lab 3: Explain ICS Fundamentals Overview fundamentals
- Lab 4: Execute hands-on tasks for why ics security matters
- Lab 5: Design a scalable privilege management architecture with policy and enforcement
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for ICS Deep Dive, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI