Walt Boyes just posted this message: "Go visit www.us-cert.gov/control_systems" on Twitter. (If you're not following @waltboyes, why not? Seriously, Twitter isn't just about wasting time at work. But I digress.
Here's the point: This is what the link takes you to.
Control Systems Security Program (CSSP)
The goal of the DHS National Cyber Security Division's CSSP is to reduce industrial control system risks within and across all critical infrastructure and key resource sectors by coordinating efforts among federal, state, local, and tribal governments, as well as industrial control systems owners, operators and vendors. The CSSP coordinates activities to reduce the likelihood of success and severity of impact of a cyber attack against critical infrastructure control systems through risk-mitigation activities. These risk-mitigation activities have resulted in the following tools:
- Catalog of Control Systems Security: Recommendations for Standards Developers
- Cyber Security Evaluation Tool (CSET)
- CSSP Documents
- Critical Infrastructure and Control Systems Security Curriculum
- Cyber Security Procurement Language for Control Systems
- Recommended Practices
- Training
To obtain additional information or request involvement or assistance, contact [email protected].
And this is only the home page. There's lot's of good stuff here, and if you're serious about cyber security (as well you should be) this site is a good place to start. You've already paid for this stuff. Might as well take advantage of it.