Cyber Security Fundamentals

DAY 1

Domain 1 – Cyber security concepts

• Cyber security principles used to manage risks related to the use, processing, storage and transmission of information or data
• Security management
• Risk management processes, including steps and methods for assessing risk
• Threat actors
• Cyber security roles
• Common Adversary Tactics, Techniques and Procedures (TTPs)  u Relevant laws, policies, procedures and governance requirements u         Cyber security controls

Domain 2 – Cyber security architecture principles

• Network design processes, to include understanding of security objectives, operational objectives and trade-offs
• Security system design methods, tools and techniques
• Network access, Identity and Access Management (IAM)
• IT security principles and methods
• Network security architecture concepts, including technology, protocols, components and principles
• Malware analysis concepts and  methodology
• Intrusion detection methodologies and techniques for detecting host and network-based intrusions via intrusion detection technologies
• Defense in depth principles and network security architecture
• Encryption algorithms
• Cryptography
• Encryption methodologies
• The process of traffic flows across the network (e.g., transmission and encapsulation)
• Network protocols, dynamic host configuration protocol, and directory services

DAY 2

Domain 3 – Security of networks, systems, applications and data

• Vulnerability assessment tools and their capabilities
• Basic system administration, network and operating system hardening techniques
• Risk associated with virtualizations
• Penetration testing
• Network systems management principles, modules, methods and tools
• Remote access technology
• Unix command line
• System and application security threats and vulnerabilities
• System life cycle management principles, including software security and usability
• Local specialized system requirements for safety, performance and reliability
• System and application security threats and vulnerabilities  u  Social dynamics of computer attackers in a global context  u Secure configuration management techniques
• Capabilities and applications of network equipment including hubs, routers, switches, bridges, servers, transmission media an related hardware
• Communication methods, principles and concepts that support the network infrastructure
• Common networking protocols and services and how they interact to provide network communications
• Different types of network communication
• Virutalization technologies and virtual machine development and maintenance
• Application security
• Risk threat assessment

DAY 3

Domain 4 – Incident response

• Incident categories and response
• Business continuity/disaster recovery
• Incident response and handling methodologies
• Security event correlation tools
• Processes for seizing and preserving digital evidence
• Types of digital forensics data
• Basic concepts and practices of processing digital evidence
• Anti-forensics tactics, techniques and procedures (TTPS)
• Common forensic tool configuration and support applications
• Network traffic analysis methods
• Which system files contain relevant information and where to find those system files

Domain 5 – Security implications and adoption of evolving technology

• Emerging technology and associated security issues, risks and vulnerabilities
• Risk associated with mobile computing
• Cloud concepts around data and collaboration
• Risk of moving applications and infrastructure to the cloud
• Risk associated with outsourcing
• Supply chain risk management processes and practices

Day 4

Exam Prep