Full Report
October 14 and 15, 2019, Kaspersky ICS CERT experts provided an exclusive two-day training program on applied industrial cybersecurity at the Deggendorf Institute of Technology (DIT) for graduate students specializing in cybersecurity, as well as for 30 students from various DIT courses.
Analysis Summary
# Industry News: Kaspersky Deepens Academic Footprint in Applied ICS Security Training
## Summary
Kaspersky ICS CERT conducted an exclusive two-day applied Industrial Control Systems (ICS) cybersecurity training program for students at the Deggendorf Institute of Technology (DIT) in October 2019. This initiative included theoretical sessions, hands-on exercises covering IoT vulnerabilities and YARA rules, and parallel discussions leading to a commitment for joint research and the establishment of a new ICS Cybersecurity Lab in Teisnach.
## Key Details
- Date: October 14 and 15, 2019 (Reported November 25, 2019)
- Companies Involved: Kaspersky ICS CERT, Deggendorf Institute of Technology (DIT)
- Category: Partnership / Academic Engagement / Training & Research Collaboration
## The Story
Kaspersky experts delivered specialized training covering resolving ICS issues across manufacturing, energy, and oil/gas sectors, focusing on IoT vulnerabilities and compliance challenges (e.g., addressing vendor fixes for 'features by design'). The program utilized interactive elements, including YARA rule instruction, simulations based on the IoT Security Maturity Model (SMM), and a cyberdefense game simulating a water processing plant incident. Crucially, this event catalyzed a broader partnership, with Kaspersky and DIT agreeing to conduct joint research and establish a dedicated ICS Cybersecurity Lab in Teisnach to analyze real-world threats.
## Business Impact
### For the Companies Involved
- **Kaspersky:** Solidifies its position as a thought leader and educator in the critical ICS security domain, building essential talent pipelines and gaining access to academic research capabilities. The partnership provides a practical testing ground and validation for their research, particularly around vulnerability management.
- **DIT:** Significantly enhances the practical relevance and marketability of its cybersecurity programs by integrating cutting-edge, real-world training and facilitating the creation of a state-of-the-art industrial security laboratory.
### For Competitors
- This investment in academic outreach, especially the establishment of a formalized lab partnership, allows Kaspersky to build deeper educational connections than competitors who may only offer static curricula or occasional workshops, potentially creating a sustained talent advantage that benefits their long-term service offerings.
### For Customers
- Indirectly benefits customers by fostering a new generation of security professionals equipped with practical skills in ICS, IoT security, and incident response methodologies favored by leading security vendors. The resulting joint lab research will contribute new threat intelligence applicable to industrial environments.
### For the Market
- Highlights a growing trend where cybersecurity vendors must engage directly with academic institutions to address the severe shortage of specialized ICS security talent. It emphasizes the recognized need for structured, practical training that moves beyond theoretical knowledge to cover complex industrial protocols and real-world incident simulation.
## Technical Implications
The training heavily featured practical techniques, specifically focusing on **YARA rules** for malware analysis and defense strategies derived from the **IoT Security Maturity Model (SMM)**. The upcoming lab will likely focus on analyzing malware specific to Operational Technology (OT) environments and testing defensive strategies in a controlled setting.
## Strategic Analysis
- **Market Positioning:** Kaspersky reinforces its brand equity not just as a vendor but as a security educator and infrastructure partner, particularly valuable in security-sensitive sectors like energy and manufacturing where trust is paramount.
- **Competitive Advantage:** The long-term commitment, evidenced by the joint lab, creates a strategic moat through continuous educational engagement and co-authored research, keeping Kaspersky at the forefront of emerging OT/ICS threats.
- **Challenges:** Integrating academic research timelines with rapid commercial cybersecurity threats can be challenging. Ensuring the Teisnach lab remains equipped with the latest technology to address fast-evolving industrial malware will require sustained investment from both parties.
## Industry Reactions
- **Analyst opinions:** Analysts generally view such deep academic engagement positively, seeing it as a proactive step to combat the specialized skill gap in OT security.
- **Expert commentary:** Professor Grzemba’s endorsement suggests high utility, noting that students benefited from gaining "first-hand knowledge" from intrusion experts.
- **Market response:** The strong reception from students and faculty underscores the market's demand for highly practical, vendor-informed training solutions.
## Future Outlook
- This initial training is expected to transition into a sustained, regular feature in DIT’s curriculum, alongside concrete research outputs from the new Teisnach lab. The market should watch for joint publications or threat reports emerging from this collaboration in the subsequent year.
## For Security Professionals
This event underscores the value of cross-disciplinary skills in ICS security—combining technical analysis (YARA, vulnerability fixing) with strategic concepts (SMM, regulatory compliance). ICS practitioners should seek out training or resources that bridge the gap between IT security principles and OT operational realities, aligning with methodologies like the SMM.