Understand and use the results of the Cyber Risk Assessment (EN60 Course) to influence the design of new (future) systems and the redesign of existing systems to achieve effective and sufficient risk mitigation. Learn a proven work methodology, based on years of experience to mitigate all intolerable risks effectively and efficiently, as soon as possible, without wasting time. Design, specify, and implement monitoring, detection, and alert strategies without false positives for a timely and accurate response. Prioritize the implementation of security recommendations based on their greatest contribution to risk reduction, lower costs and efforts, greater ability to meet the security level, etc. Define and configure the appropriate cybersecurity policies for each zone and pipeline. Develop security acceptance tests.

Assist the safe operation of the plant through strategies and systems for monitoring, detection, alerting and management of response plans in an assertive manner and without false positives. Integrate with corporate SOC-OT applications for bi-directional exchange of security information. Develop and implement industrial systems upgrade strategies appropriately. Develop and implement change management processes in industrial systems, maintaining security levels without degrading. Plan and develop preventative maintenance activities for industrial systems for zone and duct safety. Manage and maintain backup and recovery processes and systems. Develop and execute periodic safety audits of industrial systems in zones and ducts. Prepare to have the system certified by the certificate authority.

Manage the lifecycle of security alerts according to the implementation of countermeasures and current risks for each zone and pipeline. Learn best practices to improve alert and response system performance. Develop learning methods to solve common alert management problems. Learn about best practices for effective and successful alert management system implementation. Integrate cybersecurity alerts with industrial process alarms. Avoid generating false security alerts that lead to no action or create distractions from valuable resources. Design responses to security alerts before they happen with fast, accurate responses. Develop the metrics for success in alert management and continuous improvement.