A learning environment for defending both information systems and the operational technology that runs physical infrastructure. Covers the CIA triad and defense-in-depth, the NIST Cybersecurity Framework and IEC 62443, network segmentation, identity & access management, zero trust, the SOC and incident response โ from IT security through to OT/ICS.
Built for security engineers, network and controls engineers, SOC analysts, and IT/OT professionals working across enterprise, industrial, and critical-infrastructure environments.
Segmentation and resilient architecture are core defensive controls. These live design tools are shared with the SCADA and Enterprise IT studios.
Design OT/ICS network segmentation with the Purdue model and IEC 62443 zones & conduits โ managed switch placement, VLAN/firewall boundaries, an Industrial DMZ and data diode, and a bill of materials.
Plan an enterprise network with a security framework โ segmentation, firewalls, and a starting-point compliance checklist referencing NIST CSF, PCI-DSS, and SOC 2.
Plan IP subnets and VLAN boundaries โ the groundwork for network segmentation, one of the most effective defensive controls.
Design redundant, resilient network topologies that protect availability โ the priority security goal in OT environments โ against link failures and disruption.
Interactive 3D SCADA system โ explore the OT/IT DMZ, jump hosts, and the segmentation that defends industrial control networks from the corporate side.
Animated industrial Ethernet topology showing Purdue model zone boundaries, ring redundancy (DLR/MRP), and protocol traffic flows across managed switches.
Cybersecurity is a certification-driven field. This overview maps the credentials that matter across the career โ vendor-neutral foundations (CompTIA), senior management certs (ISC2, ISACA), offensive/ethical-hacking certs, and the OT/ICS-specific certifications (GICSP, ISA/IEC 62443) โ what each covers, who runs it, and how they ladder.
CompTIA Security+ prep: threats & vulnerabilities, cryptography, IAM, secure architecture, operations, and GRC โ the fieldโs standard entry cert.
CompTIA CySA+ prep: behavioral analytics, SOC operations, vulnerability management, threat intel, and incident response.
CompTIA PenTest+ prep: scoping, recon, vulnerability scanning, exploitation, and professional reporting for penetration testers.
CISSP prep: the eight (ISC)ยฒ domains โ risk management, security architecture, network security, IAM, security operations and more.
CISM prep: governance, risk management, building and running a security program, and incident management โ for security managers.
CISA prep: IS auditing, IT governance, systems acquisition, operations/resilience, and protecting information assets.
OSCP prep: the legendary 24-hour hands-on exam โ enumeration, exploitation, privilege escalation, AD attacks, and reporting.
CEH prep: the ethical-hacking attack lifecycle โ recon, scanning, exploitation, web/wireless attacks, and malware concepts.
GIAC GSEC prep: hands-on defensive security โ networking, crypto, incident handling, and Windows/Linux/cloud hardening.
GICSP prep: securing industrial control systems โ Purdue model, ICS protocols, OT network defense, and IEC 62443 concepts.
ISA/IEC 62443 certificate prep: the OT-security standard itself โ zones & conduits, security levels, and risk assessment.