Learning Path

Certified SCADA Security Architect (CSSA)

Learn to defend against attacks to critical industrial automation systems.

What you will learn

This learning path teaches you how to defend the Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) that manage our nation’s critical infrastructure. Fourteen courses build your SCADA security knowledge around the eight Certified SCADA Security Architect (CSSA) domains. You’ll learn about defending against common SCADA threats and vulnerabilities, conducting risk assessments, implementing remote access and physical controls, and more. Upon completion, you’ll be prepared to earn your CSSA certification and validate your SCADA security knowledge.

Wistia video thumbnail


Introduction to SCADA Security

Course — 00:20:09

K0005, K0137, K0170, K0437

Get an introduction to SCADA security, including ICS types, ICS components, process control and safety systems, and strengths and weaknesses.

ICS Protocols

Course — 01:06:52

K0005, K0137, K0170, K0417, K0437

Explore common Industrial Control System (ICS) protocols and their security features as you progress through this 15-video course.

SCADA Security Frameworks

Course — 01:06:30

K0005, K0006, K0065, K0137, K0177, K0267, K0437, K0612

This course will begin your reintroduction to SCADA security frameworks, covering common threats to SCADA, relevant security standards and bodies, developing SCADA security policies and more.

SCADA Security Assessment

Course — 00:44:38

K0002, K0013, K0040, K0165, K0290, K0342, K0437

Review your understanding of SCADA security assessment with this course covering SCADA security objectives, security assessment programs and more.

SCADA Device Identification and Analysis

Course — 00:42:33

K0004, K0137, K0170, K0177, K0274, K0342, K0437, K0536, K0565

Make sure you know what you need to know with this course on SCADA device identification and analysis.

SCADA Vulnerabilities

Course — 00:26:39

K0005, K0060, K0071, K0077, K0137, K0170, K0177, K0342, K0437, K0536, K0565

Explore SCADA vulnerabilities with this course covering common vulnerabilities, vulnerability scanning, server OS testing and more.

Pentesting SCADA Services and Protocols

Course — 00:23:23

K0005, K0060, K0137, K0170, K0177, K0342, K0437, K0536, K0565

Review what it takes to attack standard services, server OS, ICS protocols and more with this course on pentesting SCADA services and protocols.

SCADA Access Controls

Course — 00:30:45

K0007, K0033, K0056, K0065, K0137, K0170, K0437

In this course, you’ll look at the importance of SCADA access controls. Review physical safety, access control models and more.

Remote Access and Field Site Security

Course — 00:36:55

K0071, K0104, K0137, K0190, K0427, K0437, K0561

Re-familiarize yourself with the challenges of remote access and field site security through this course on remote access technologies, field site firewalls and more.

SCADA Network Security

Course — 00:38:51

K0033, K0049, K0137, K0145, K0179, K0437, K0561, K0565

In this course, you’ll refresh your knowledge of SCADA network security through secure network design, firewalls and logical security zones.

SCADA Intrusion Detection and Incident Response

Course — 01:00:48

K0004, K0041, K0042, K0046, K0137, K0324, K0437

Get to grips with what you need to know for SCADA intrusion detection and incident response.

SCADA Preventative Controls

Course — 00:45:57

K0033, K0049, K0074, K0162, K0205, K0324, K0437, K0480

Brush up on what you need to prevent or mitigate disasters with this course on SCADA preventative controls.

ICS/SCADA Security Best Practices

Course — 00:25:34

K0004, K0005, K0073, K0437, K0527

Let’s take a look at ICS and SCADA Security best practices.

CSSA Exam Overview

Course — 00:04:54

This course will give you an overview of the Certified SCADA Security Architect (CSSA) exam and what to expect.

CSSA Practice Exam

Assessment — 75 questions — 00:37:30

CSSA Skill Assessment

Assessment — 75 questions — 00:37:30

The details

Learning path insights

How to claim CPEs

Should you complete this learning path, you’ll be able to download a certificate of completion. Use this to claim your CPEs or CPUs.

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Exploitation Analyst

No software. No set up. Unlimited access.

Skip the server racks and spin up a realistic environment with one click. Infosec Skills cyber ranges require no additional software, hardware or server space so your team can spend less time configuring environments and more time learning. Unlimited cyber range access is included in every lnfosec Skills subscription so your team can skill up however they learn best.

Plans & pricing

  • Infosec Skills Personal

    $299 / year

    • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
    • 100s of hands-on labs in cloud-hosted cyber ranges
    • Custom certification practice exams (e.g., CISSP, Security+)
    • Skill assessments
    • Infosec peer community support
  • Infosec Skills Teams

    $799 per license / year

    • Team administration and reporting
    • Dedicated client success manager
    • Single sign-on (SSO)
      Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
    • Integrations via API
      Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
    • 190+ role-guided learning paths and assessments (e.g., Incident Response)
    • 100s of hands-on labs in cloud-hosted cyber ranges
    • Create and assign custom learning paths
    • Custom certification practice exams (e.g., CISSP, CISA)
    • Optional upgrade: Guarantee team certification with live boot camps

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

You're in good company


We use Infosec Skills to provide continuous training to our technicians and to prepare them for various certifications. Infosec Skills allows us to create personalized training programs that focus on each of our technicians’ particular roles and see their progress as they take courses. We also, recommend it to clients to make their IT support teams better.

Caleb Yankus


This has been utilized to bridge the skills gap across our cyber team and to aid them as they prepare for their various certifications. It also has provided a nice learning foundation for our various cyber team members to utilize as we continue to find ways for cross-utilization with operations while minimizing the downtime needed to ensure everyone’s knowledge is the same.

Daniel Simpson


We use Infosec Skills to provide base level knowledge for employees. We also use the services to provide in depth learning for employees as they encounter new technologies. If an employee is is assigned to a new project, we can rely on Infosec Skills to provide a rapid concentrated learning environment. This rapid concentrated learning positions our employees for success.

Infosec Skills Teams client