- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
Build a high-impact security operations center for industrial control systems with this comprehensive guide to defending critical infrastructure, covering fundamentals, design, deployment, and continuous improvement
Key Features
An end-to-end practical ICS SOC guide with real-world case studies and insights
A focused approach to ICS-specific security, integrating AI/ML for resilient threat detection
Guidance for designing, optimizing, and operating robust SOCs for critical infrastructure
Book DescriptionCyber threats against industrial control systems (ICS) aren't slowing down, and neither can you. Gabriel Sanchez, Joshua Magady, and Pascal Ackerman have created this comprehensive blueprint to help you establish and manage a robust security operations center (SOC) specifically designed for the unique challenges of ICS environments.
This guide takes you through the complete lifecycle of an ICS SOC, from initial risk assessment and infrastructure design to process optimization and advanced threat detection. Through real-world case studies and hands-on guidance, you'll learn how to address the distinct security requirements of ICS, conduct thorough risk assessments, and design SOC infrastructures that integrate with essential security technologies.
You'll be guided by the authors' extensive experience in managing SOC operations, applying advanced AI and ML, and responding to emerging threats, ultimately helping you build a robust and resilient security posture for critical infrastructure. The book also shows you how to optimize SOC workflows and ensure scalability as the threat landscape evolves.
By the end, you'll be ready to protect critical infrastructure, operate an ICS SOC, and stay ahead in the constantly evolving cybersecurity landscape.What you will learn
Understand the unique security challenges and requirements of ICS
Conduct comprehensive ICS security risk assessments
Design and implement robust ICS SOC infrastructures
Develop and optimize SOC processes, procedures, and playbooks
Manage and enhance SOC operations, including staffing and training
Leverage AI, ML, and SOAR to boost SOC capabilities
Integrate ICS SOC with enterprise security function
Who this book is forThis book is for cybersecurity professionals, ICS/OT engineers, SOC managers, SOC analysts, and IT/OT convergence specialists responsible for designing, implementing, and managing security operations centers specifically for industrial control systems. A basic understanding of industrial control systems, their components, and their unique security challenges is assumed. Although not a prerequisite, familiarity with general cybersecurity concepts, such as security operations centers, incident response, and risk management, will help you grasp the content more effectively.
Contents
Table of Contents
Introduction to Industrial Control Systems, Security Challenges, and the Role of SOC
Essential Components, Architecture, and Regulatory Compliance for ICS Soc
Building a Business Case and Understanding the Impact of ICS Security Incidents
Conducting an ICS Security Risk Assessment and Defining SOC Requirements
Designing, Implementing, and Integrating ICS SOC Infrastructure and Technologies
Developing ICS SOC Processes, Procedures, and Playbooks
Staffing, Training, and Incident Response Strategies for ICS SOC Teams
Continuous Monitoring, Threat Hunting, and Intelligence in ICS Networks
Automating, Orchestrating, and Measuring ICS SOC Performance
Maintaining, Updating, and Troubleshooting ICS Security Tools and Infrastructure
Capacity Planning, Scalability, and Performance Optimization of ICS SOC Technology
Integrating and Automating ICS Security Technology Workflows with SOAR
Leveraging AI and ML in ICS SOC
Securing ICS in the Era of Industry 4.0, IoT, and Collaborative Threat Intelligence Sharing
Integrating ICS SOC with Enterprise SOC, IT Security, and External Stakeholders
