Skip to content

Industrial Security Certificate Program

The increasing use of and dependence on Operational Technology (OT) requires that leaders understand the risk associated with this technology and how to mitigate regulatory and operational risk to their organizations. The Duke Industrial Security for Leaders Certificate program will provide an introduction to Operational Technology and threats and vulnerabilities that may facilitate malicious targeting of industrial systems. Leaders will gain an understanding of regulatory frameworks and standards and of regulatory requirements that can be implemented to protect this critical technology. On completion of the certificate program, leaders will have a firm grasp on threats, risks, mitigation and governance and oversight of OT.

Classroom with program participants listening to a presentation

2025 Registration Details:

  • Application Deadline: TBD
  • Program Dates: TBD
  • Program Tuition: TBD

The increasing use of and dependence on Operational Technology (OT) requires that leaders understand the risk associated with this technology and how to mitigate regulatory and operational risk to their organizations. The Duke Industrial Security for Leaders Certificate program will provide an introduction to Operational Technology and threats and vulnerabilities that may facilitate malicious targeting of industrial systems. Leaders will gain an understanding of regulatory frameworks and standards and of regulatory requirements that can be implemented to protect this critical technology. On completion of the certificate program, leaders will have a firm grasp on threats, risks, mitigation and governance and oversight of OT.

2025 Registration Details:

  • Application Deadline: TBD
  • Program Dates: TBD
  • Program Tuition: TBD

Ready to boost your career?

Course Overview

The Industrial Security Certificate program consists of three key modules*: Foundations, Policy and Regulation, and Security Management. After completing this comprehensive two-day program, participants will take an exam covering the material presented. Successful completion will earn them the Duke Industrial Security for Leaders certificate.

*Schedule and sequencing of programming are subject to change.

Module 1 | Industrial Security Foundations

  • Definition of OT Environment.
  • Basic Operations of OT System/Controls.
  • History of OT and IT convergence.
  • Purdue Model.
  • Aspects of OT environments.
  • Lifecycle of OT.
  • Critical Infrastructure Sectors.
  • Current and Emerging Threat Landscape.
  • Cyber Attacks on OT Systems.
  • Identify threat sources, vulnerabilities, and incidents.
  • Understand the importance of 1st order and 2nd order impacts to operations from OT cyber-attack events.
  • Environmental concerns from attacks on OT.
  • Understand criticality of the facility, or various parts of the OT environment, to the overall business.
  • Introduction to Enterprise Cybersecurity Operations.
  • Cybersecurity in the Cloud Environment.
  • AI Enablement for Cybersecurity.

Module 2 | Industrial Security Policy & Regulation

  • ISO 27001/NIST CSF

  • IEC62443

  • NIST SP 800-82r3

  • NERC CIP

  • NIS2

  • NRC CFR 810

  • TSA Security Directives

  • Reporting requirements

  • US Government Role in OT Policy.

  • International (EU, etc.) Role in OT Policy.

  • Corporate OT Governance and Policy.

  • National Cybersecurity Strategy Defend Critical Infrastructure.

Module 3 | Operational Technology Security Management

  • Why is a business continuity plan needed/required.
  • What constitutes a cyber or physical event.
  • How does the utilization of a business continuity plan save time and money.
  • Business continuity plan considerations per Industry.
  • Early warning comms and collaboration.
  • Private sector awareness and active involvement.
  • IEC62443 3-1

  • Operational impact assessment.

  • Safety & Resiliency

  • Role of Management Oversight in OT Security.

  • Board of Director Governance of OT Security in the Enterprise.

  • Metrics and KPI’s for Directors of Boards and Managers.

  • Budgeting for OT Security.

  • Legacy Technology in the OT Infrastructure.

  • The Risk to OT from Third Party Vendors

  • Managing Risk from Third Party Vendors

How to Apply

We have outlined the application process for the program and key deadlines below.

Step 1: Apply

Visit our application page to start your application.

Application Deadline: TBD

Step 2: Acceptance

Once applications are received and reviewed, candidates will be notified of their status and will receive information about how to join the program, course materials, and schedule. 

Step 3: Prepare

Complete the tuition payment and arrange accommodations for the in-person component of the program.

Ready to boost your skills in Industrial Security Leadership?

Priority Registration Deadline: TBD

Application Deadline: TBD

Tuition Deadline: TBD

The two-day Duke Industrial Security for Leaders certificate program is intended for members of the board of directors, executives and managers who are responsible for governance and oversight of Operational Technology (OT) infrastructure in their organizations. The certificate program will provide the information that leaders need to be more effective risk managers for this critical infrastructure.

The fee for attending the program is $XX,XXX and includes access to the course materials and platform. Tuition payment should be paid in full prior to the program start date.

We offer flexible payment installment plans and priority pricing for alumni and partners. If you are interested in creating a payment plan or if you are interested in our priority pricing, please email us at pratt_cybersec@duke.edu.

Program Director

Art Ehuan is the Executive in Residence at the Pratt School of Engineering and Executive Director of the Master of Engineering in Cybersecurity Program. Previously Art served as the Vice President at Palo Alto Networks, a global cybersecurity corporation and managing director at Alvarez & Marsal, global cyber risk service management practice, an international consulting firm. Art has held cybersecurity leadership roles at USAA, Northrop Grumman Corporation and Cisco Systems. Art has worked with governments and law enforcement in the U.S. and overseas on cybersecurity cases, frequently giving expert testimony in federal, military, and state courts on digital forensics and cybercrime matters. For nearly two decades he has served as a lecturer for the U.S. State Department’s Anti-Terrorism Assistance Cyber Training Program, and he previously also worked as a supervisory special agent with the Federal Bureau of Investigation (FBI) and a special agent for the U.S. Air Force Office of Special Investigations. Art has been retained as a cyber expert on prominent data breaches to include Sony Pictures, Target, Anthem, Equifax, Marriott and Capital One.

Art Euhan Headshot