You are here

Cybersecurity in the Energy Sector: Anticipate threats, mitigate risks

Cybersecurity in the Energy Sector: Anticipate threats, mitigate risks

Increase your awareness of current industrial cybersecurity incidents and identify the main types of ICS OT vulnerabilities. Understand how the evolution of the internet of things can impact ICS security.

We will announce the next run of this course in due course. If you are interested and would like to know when this course is open for enrolment, register your interest below.

Be one of the first 25 to enrol and receive a free copy of Blackout: Tomorrow Will Be Too Late by Marc Elsberg. 

The shift to decentralisation, digitisation and the unstoppable integration of the Internet of Things have increased the risk of cyberattacks exponentially in the energy sector. Preserving your organisation’s operations and protecting your data means building deep understanding of the issues, regulations and frameworks that matter. Constructing a common language. And forging company-wide alignment. 

Cybersecurity in the Energy Sector is delivered by InnoEnergy, one of Europe’s leading experts in energy and innovation, and our expert partners Fraunhofer Academy, AFKC, and Kaspersky. The course draws on the combined expertise of top academics, industry experts, investment advisors and innovation start-ups. Through online learning, expert lead sessions and the interactive KIPS simulation game - based on a real time cyberattack - you are empowered with the critical knowledge and skills to:

  • Evaluate IT and OT risks and vulnerabilities in your system
  • Understand the legal frameworks in the context of the energy sector
  • Get to grips with privacy concerns and needs of your customers
  • Explore the full spectrum of cybersecurity counter-measures including anonymisation of data
  • Build pan-organisational buy-in and alignment
  • Design and execute a defence strategy that protects your infrastructure from cyberattacks.

What will you learn?

This course has been specifically designed to give you an understanding and the tools to build effective, proactive and reactive strategies at both organisational and technical levels. Throughout the course, you will cover a variety of topics.

  • As well as generic threats, industrial security must contend with ICS-specific malware and targeted attacks: Stuxnet, Havex, BlackEnergy, Industroyer, and infamous Triton that targets Safety Instrumented Systems – the list is growing rapidly. As the Stuxnet and BlackEnergy attacks have shown, one infected USB drive or single spear-phishing email is all it takes for well-prepared attackers to bridge the air gap and penetrate an isolated network.
  • Another rising threat to ICS is ransomware. The emergence of ransomware is highly significant for the industrial sector – such infections cause high-impact, wide-ranging damage to critical systems, making ICS a particularly attractive target – as proven by numerous incidents of ransomware attacks (especially WannaCry and exPetr infections) hitting ICS/SCADA systems during 2017. In the near future ransomware designed to attack industrial systems may have its own specific agenda – instead of encrypting data, the malware may set out to disrupt operations or to block access to a key asset.
  • In addition to malware and targeted attacks, industrial organisations face other threats and risks targeting people, processes and technology – and underestimating these risks can have serious consequences.

Upon completion of the course, you gain a better understanding of the ICS threat landscape, the impact of a real cyberattack on energy companies, and the remediation actions to take.

How will you learn?

Cybersecurity in the Energy Sector integrates all the benefits of online, self-paced learning with hands-on learning by doing to embed new knowledge, insights and skills.

Step 1: Your online course is an immersive, self-paced learning experience built on engaging video lectures, expert interviews, fictional and real-life cases, reading resources and activities that help you explore the diverse aspects of cybersecurity

Step 2: Online live session in a “round table” format to discuss the different perspectives of cybersecurity implementation in the Energy Sector, from research to operation.

Step 3: Virtual session on real-world critical infrastructure attack case study with analysis from experts, followed by cyberattack game simulation in small, competitive groups to learn by doing and develop risk-evaluation and decision-making skills.

View the full programme

Who will teach you?

The InnoEnergy consortium is a recognised leader in sustainable energy education, drawing on the combined expertise of many of Europe’s foremost technical universities, business schools, industry experts and innovation start-ups. Faculty include:

  • Fabrizio Mancini – Co-founder and CEO of AFKC and industry expert in cybersecurity
  • Davide Garufi – Owner of Moscarda Consulting and expert in energy innovation 
  • Jörg Lässig – Professor Enterprise Application Development at Hochschule Zittau and Group Manager Fraunhofer IOSB Cybersecurity Lab KRITIS
  • Sebastian Mann – Expert in privacy enhancement technologies, cryptographic methods for media security and sensitive data with research group, Media Distribution and Security
  • Kirill Naboyshchikov - Kaspersky Industrial Cyber Security Business Development Manager 

Is it right for you?

Cybersecurity in the Energy Sector has been expertly designed for executives in charge of business, operational and IT functions and senior leaders. Participants include:

Senior business developers, product managers and digital strategists
IT managers, software and security engineers, information security analysts and security architects and officers
Energy and R&D engineers
Directors of operations

What do others think?

We will announce the next run of this course in due course. If you are interested and would like to know when this course is open for enrolment, register your interest below.

Who are the collaborators?