Limes Academy

The training course „ICS.201 OT Security Fundamentals“ is the perfect introduction to the topic of OT security. The course creates common understanding of OT security and provides guidance on how to work with it. Real incidents, practical knowledge from OT projects as well as case studies and findings from OT security assessments are used to teach participants how to understand and question the current security status of their OT environment.

The training „ICS.205 Certified OT Security Practitioner (COSP)“ is the perfect choice for every participant preparing for a role or function with some OT security responsibilities. The training conveys essential OT security know-how, gives an introduction to common standards and explains practical actions for the secure operation of industrial systems. Existing skills in the areas of maintenance, industrial automation, as well as instrumentation and control technology are enhanced with the ability to include the security perspective in networked industrial systems.

The training „ICS.212 Certified OT Security Manager (COSM)“ provides those responsible for operations, project and production managers and decision-makers in general with the knowledge they need to implement security in industrial operations. Participants learn all necessary skills to recognize dangers early on, to increase the security level and to lastingly avoid security vulnerabilities. While organizational topics and process management are the main focus of this training, technical influencing factors are also discussed to better prepare the participants for future security decisions.

In this mix of interactive workshop and classic training, participants are taught the most important terms and fundamental concepts of the 62443 series of standards. In group discussions and question rounds, the individual needs of the participants can be directly addressed. The experts from Limes Security also bring practical experience from years of applying the various parts of the standards in different industries, which difficulties and discussions repeatedly arise, and which approaches enable successful handling of the different standards. Concepts such as Zones & Conduits or Security Levels are also deepened in practical exercises. 

If you don‘t want to leave security, and therefore the quality of your products, to chance, you need to take a proactive approach. Only the integration of security into development processes and an organization that knows how to deal with this topic in a professional way will result in high-quality products that meet market requirements. The „Secure product development for OT and (I)IoT“ training course teaches participants how security can be integrated into product development in order to make their products sustainably secure.

The Security Testing Foundation training teaches the basic concepts of security testing. A structured procedure is presented along with how security tests for an application can be organized. Subsequently, cross-site scripting and SQL injection attacks will be discussed with a focus on web applications. Their anatomy will be explained and practiced using real-world examples. During the training, well-known hacking tools will be used again and again to give the participants a tangible picture of reality. Finally, tools are presented with which automated security scans can be carried out and we discuss how to deal with their results.

The training can also be provided with a focus on security testing for embedded devices. The web topics are then replaced by relevant security testing topics from firmware, hardware and system hardening, as well as content for testing proprietary protocols and interfaces.

The IT security awareness training serves as a basis for every employee in the company to impart a basic understanding for security or to refresh pre-existing security knowledge.

In our cyber security simulation game “Zero Downtime:Blackout Edition”, you become the cyber security defender of your organization. Several teams compete against each other and learn in a gamified setup to walk through a potential incident reality. The simulation game is based on serious thoughts: The participants learn about current IT/OT threat scenarios and state-of-the-art security concepts as countermeasures. Through the involvement of each participant as part of a virtual security team, learning several core elements is assured. At the same time teamwork is essential. In the end, the company which has mastered the challenges best is declared the winner. The simulation game is moderated by a Limes Security expert and the results are summarized briefly after each round. The participants play in groups online, No special previous knowledge is required to participate, and the game is suitable for beginners as well as advanced audiences.