Session Title | A Framework For ICS Honeypot.
For decades Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) have used computers to monitor and control physical processes in many critical industries, including electricity generation, gas pipelines, water distribution, waste treatment, communications, and transportation. Increasingly these systems are interconnected with corporate networks via the Internet, making them vulnerable and exposed to the same risks as those experiencing cyber-attacks on a conventional network. This workshop is about SCADA/ICS cyber-attacks and security risks. During the workshop, we will focus on the main difference between IT/OT, ICS system components, ICS System Architecture, as well as during our session we will discuss types of honeypots and explore how to build SCADA honeypot systems, incidents in ICS and vendors investment.
Mohamed Mesbah is a cybersecurity consultant with 5-year experience, He holds a bachelor's degree in computer science from Helwan university in 2014 as well as a master degree specialized in information security from Nile university 2019 with deep research and project about ICS/SCADA cybersecurity.
He holds some technical certifications Cisco, Microsoft, Kaspersky, Symantec as well as technical knowledge about malware analysis, incident handling, information security policy, web security, SCADA security, network security, and cryptography).
Mohamed worked for Diverse as sr. cybersecurity consultant established their information security team, before Diverse he worked as a cybersecurity officer for the Egyptian army for 2 years he was responsible for information security for one of the Egyptian army DC. He still doing his research about ICS/SCADA security and how to detect malicious behavior in plant using machine learning.