Lesson 2A – Critical Infrastructure Sectors Updated!

This lesson describes critical infrastructure sectors, which depend on industrial control systems (ICS) while making production systems (and other critical infrastructure sectors) possible.

Learning Objectives
  • Describe critical infrastructure, why it is important, and how it is related to production systems
  • Identify key critical infrastructure sectors
  • Describe natural and man-made threats to critical infrastructure
  • Explain what resilience is and how critical infrastructure sectors can be made more resilient
  • Explain the relationship between social capital and critical infrastructure failures
  • Explain how quality systems can support critical infrastructure
Lesson 2A – Critical Infrastructure Sectors Lesson Plan

Log In
to download materials

* NICE Cybersecurity Workforce Framework KSAs Addressed
  • K0048: Knowledge of Risk Management Framework (RMF) requirements.
  • K0267: Knowledge of relevant laws, policies, procedures, or governance related to critical infrastructure.
  • K0335: Knowledge of current and emerging cyber technologies.
  • K0437: Knowledge of general SCADA system components.
  • K0612: Knowledge of what constitutes a “threat” to a network.
  • S0001: Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
  • S0027: Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  • S0034: Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
  • S0038: Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system
  • S0086: Skill in evaluating the trustworthiness of the supplier and/or product.
  • S0228: Skill in identifying critical target elements, to include critical target elements for the cyber domain.
  • A0001: Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
  • A0027: Ability to apply an organization's goals and objectives to develop and maintain architecture.
  • A0060: Ability to build architectures and frameworks.

* Most courseware content maps to NIST NICE Cybersecurity Workforce Framework (NCWF) Knowledge, Skills, and Abilities (KSAs) and/or NSA/DHS CAE Knowledge Units (KUs). For more information on KSAs and KUs, please visit:

KSAs: http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-181.pdf

KUs: https://www.iad.gov/NIETP/documents/Requirements/CAE-CD_2019_Knowledge_Units.pdf