Texas Tech University

Cyber-physical Security Training Program 2022 Curriculum

Program Schedule

Expected Learning Outcomes of Programs

Module 1: Electric Utilities Cyber-Physical Operations and Security 

•       Fundamentals of Electrical Grid and Wind Energy Operations

•       Understand Cyber-Physical Process in Electric Utilities and Wind Operations

•       Hands-on lab learning experiences with SCADA, electrical grid attack surfaces, methods, and tools

•       Cyber-physical security training using the Real-time Simulator Testbed

cyber-physical-model

Figure: Cyber-Physical Testbed Example Model for Hands-on Training

 

Module 2: Computer Networking and Security 

•       Understand Computer networking and relevant networking devices and infrastructures

•       Understand networking protocols, routing, TCP/IP tools and commands, and ARP

•       Understand Cyber security attacks, including Man-in-the-middle attacks, DOS attacks, etc.

•       Cyber risk assessment and management with an emphasis on application to ICS analysis

•       Hands-on experimentation on the setup of a basic network, routing, DNS, HTTP, and DHCP servers

•       Hacking demonstration and mitigation in the experimental network

 

Network Picture

Module 3: Cyber-Physical Systems (CPS) for industry and microgrid environment 

•       Understand the fundamental concept of CPS to the industrial environment

•       Understand basic cybersecurity structures and standards

•       Hands-on experience in the setup of cybersecurity structures and cyber attacks

•       Hands-on experience in control and monitoring of microgrid

•       Hands-on experience on Epic Groov for CPS.

CPS

Module 4: Cyber-physical security risk management and hacking networks

·         Understand the concept of Cyber-Physical security risk management and hacking networks

·         Troubleshooting and command-line analysis for Cyber-physical security

·         Hands-on vulnerability assessment and hacking using Infosec cyber range 

·         Programmable Logical Controllers (PLCs) Design, Communications, and HMI programming

·         Remote and Local OS, and Network exploitation analysis

·         Simulated control system red team / blue team exercise.

Risk Mgmt