Abstract This paper discusses efforts to develop a real time cyber-physical security testbed for hands-on training and education of undergraduate students. Developed cybersecurity has been used course senior capstone project. The helps the students specifically focus on cyber threats against critical electricity infrastructures appropriate defense mechanisms by utilizing MITRE ATT&CK adversary emulation techniques, NERC CIP compliance NIST Cybersecurity Framework. To mimic realistic power substation network, we have developed three-tier architecture through mix simulation, emulation, actual hardware implementation, consisting system substation, communication control center layer. layer enables student integrate components including generation, electric bus bars, switches, transformers distributed energy resources such as solar, wind, large scale battery. Here, multiple industry-graded sensors actuators integrated capture realtime voltage current measurements enable remote protection schemes. get acquainted with different industrial automation standards protocols IEC 61850, DNP3, Modbus. network layer, combination Software Defined Networking (SDN) traditional networking, allows state-of-the-art technology paradigms, features, how they are involved in exchanging end-to-end data. At able visualize data from sources machine learningbased anomaly detection, classification, localization tools improve resiliency. Industry-standard Security Information Event Management (SIEM) Splunk Intrusion Detection Systems (IDS) train detect, defend analyze coordinated attacks. hardware-in-the-loop learning ecosystem lets perform red-team, blue-team, purple-team exercises systems following standards, guidelines, related frameworks. As an outcome, understanding concepts digital forensics, incident response, reverse engineering smart grid, design steps keep it secured. Overall, our approach advances profession robust talent pipeline meet increasing demand jobs that affect national security.

Load

Load