The operations program aims to develop and share knowledge to security operations analysts responsible for detecting vulnerabilities and incidents. It covers vulnerability management, technologies and use cases for detecting attacks, incident response, and organization of SOC or CSIRT teams.
The main goal for the 2024 program is to test IDS systems for OT and to provide members an update on threats to critical infrastructure. Discover below what ENCS will focus on during the security operations program 2024.
Threat analysis
Goal: to provide members an updated view of threats to critical infrastructures in the electricity sector
Activities:
- Interviews with SOC analyst at different members
- Analysis of open-source information
- Threat whitepaper for members
- Update training materials with new threats
Test of IDS systems for OT
Goal: to perform the lab tests of IDS systems developed for OT to update the results from 2018 and 2020
Activities:
- Market survey and meetings with suppliers to identify relevant sensors
- Survey with SOC analysts at members to identify relevant use cases
- Testing of the sensors against the use cases in ENCS lab
- Test reports and overview for members
Become an ENCS member
Are you interested in our cyber security programs? As an ENCS member, you can contribute to and learn from all our programs. Click below to learn more about our memberships
