Programme

Mastering Cybersecurity Applied to Industrial Systems

The programme of the Advance Master® in Industrial Cybersecurity Management trains experts capable of protecting critical infrastructures, production lines, industrial networks, and equipment of the Future Industry.

Based on an active learning approach (case studies, simulations, capstone project, professional thesis), it combines fundamental knowledge, advanced technologies, and professional practices.

The programme leverages the DIWII platform (Digital Intelligence for Industry Worldwide Innovation), a unique demonstrator featuring cobots, robots, automated lines, IIoT, edge computing, supervision, private 5G… an ideal experimentation ground for industrial cybersecurity.

General Structure of the Programme

  • 390 hours of instruction (45 ECTS)
  • 6-month project / professional thesis (30 ECTS)
  • 5 Major Teaching Blocks (GP)
  • Projects and practical case studies
  • 6-month company internship
  • Professional Thesis
    GP 1

    GP 1 — Bridging Module

    Volume: 60 h – 7 ECTS

    Objective

    Harmonize the cohort’s skills and establish a common technical foundation.

    Content

    • Review of Networks, Protocols, Systems
    • Cybersecurity Fundamentals
    • Introduction to Industrial Systems
    • IT vs. OT Architecture
    • Principles of System Hardening

    This module ensures that each learner, regardless of their background (IT, electronics, industrial…), can effectively follow the rest of the programme.

    GP 2

    GP 2 — Fundamentals

    Volume: 72 h – 10 ECTS

    Understand the key concepts of cybersecurity applied to industrial environments.

    Content

    • Essential Cybersecurity Concepts
    • Threat Models (MITRE ATT&CK for ICS, etc.)
    • Information Systems Security
    • Industrial Risk Analysis
    • Standards & Regulations (IEC 62443, ISO 2700x…)
    • Cyber Governance & Strategy
    GP 3

    GP 3 — System Protection

    Volume: 90 h – 127 ECTS

    Module dedicated to defense mechanisms and securing industrial infrastructures.

    Content

    • OT Security Architecture
    • Securing Industrial Networks
    • Firewalls, VPN, Segmentation, DMZ
    • Securing Automation Systems (PLC, SCADA, DCS)
    • IoT / IIoT Security
    • Hardening Industrial Workstations
    GP 4

    GP 4 — Detection, Attack Response, and Remediation

    Volume: 48 h – 5 ECTS

    Objective: detect, analyze, and respond to cyberattacks targeting industrial environments.

    Content

    • Detection Tools (IDS/IPS, SIEM, SOC)
    • Incident Analysis
    • Industrial Investigation and Forensics
    • Incident Response & Business Continuity
    • Attack Scenarios and Practical Exercises
    GP 5

    GP 5 — Future Industry & Technological Evolutions

    Volume: 66 h – 6 ECTS

    Understand how technological evolutions transform cybersecurity risks and needs.

    Content

    • Technologies of the Future Industry
    • Advanced Networks: Private 5G, LoRa, Industrial WiFi
    • Edge computing & distributed architectures
    • Monitoring, robotics, AMR, cobots
    • Connected systems and interoperability
    • New attack vectors

    This module is strongly supported by the infrastructures of DIWII, which itself constitutes a full-fledged cyber case study.

    Capstone Project

    Volume: 54 h – 5 ECTS

    Year-long group project.

    Objectives

    • Mobilize acquired technical and methodological skills,
    • Analyze a real case from the DIWII environment or a partner company,
    • Propose an OT/IT security strategy,
    • Present the conclusions to a professional jury.

    Project & Professional Thesis

    Duration: 6 months – 30 ECTS

    The professional thesis is central to professional development:

    • Conducting a real project within a company
    • Analysis of an industrial cybersecurity problem
    • Proposal and implementation of solutions
    • Writing a structured report
    • Defense before a jury composed of academics and industry professionals

    Examples of possible topics:

    • Analysis and securing of a SCADA architecture
    • IEC 62443 compliance assessment of an industrial system
    • Intrusion detection on an OT network
    • Securing IIoT gateways
    • Implementation of an industrial SOC

    A field-oriented learning approach

    • Case studies from real industrial attacks
    • Practical exercises on DIWII
    • Projects supervised by cyber and industrial experts
    • Company immersion through work-study programs
    • Operational approach focused on the concrete needs of organizations
    Download the application form

    Contact

    Company and Student

    ms-mcsi@mines-stetienne.fr

    Academic Director

    Philippe JAILLON

    Associate Professor
    Phone number
    +33 4 77 42 66 04
    Send an email