
Define data as unorganized facts needing processing to derive information. Identify data as texts or numbers on paper, bytes and bits in devices, or facts stored in the mind.
The lecture covers five authentication methods: something you know, something you are, something you have, something you do, and somewhere you are (location), and emphasizes multifactor authentication as best practice.
Learn how authentication verifies a user or subject requesting a resource, then authorization grants access if permission exists, and all actions are logged for accounting.
Compare white hat, black hat, and grey hat hackers by intention. White hats test defenses ethically; black hats steal or ransom; grey hats hack without authorization and risk illegality.
Identify how system failure happens when software or operating systems stop functioning. See how the blue screen of death in Windows uses a QR code for quick troubleshooting.
Identify four external threat actor groups: script kiddies with limited skills, hacktivists like Anonymous advocating social change, organized crime for money, and advanced persistent threats backed by nation-states.
Identify internal threat actors—disgruntled employees and unskilled employees—and explain how insiders with greater access can threaten IT infrastructure and data, through data leaks or phishing-driven credential sharing.
Recognize exposure as the result of a threat actor exploiting a vulnerability to compromise an asset. See data exfiltration or cyber attacks as examples.
Learn how physical controls protect real-world environments by deploying alarm systems, surveillance cameras, locks, doors, ID badges, and security guards to deter threats.
Explore technical controls as a category of cybersecurity measures, including smartcard access control, intrusion detection system, encryption, and network authentication.
Introduction:
Building your knowledge base is similar to building a house; without a solid foundation, it will be weak, and will fail when it is actually required. In this course my goal will be to lay solid foundation of Cyber Security for you. This course is designed to provide you with a solid foundation in cyber security, covering topics and terms used by Cyber Security Professionals.
What you will be able to do after completion of this course ?
You will be able to understand Cyber Security basics terminologies ( which will be very useful, if you have to collaborate with Cyber Security professionals).
You can take any advance level courses.
Topics Covered:
Course Intro.
What is data ?
What is information ?
State of data information.
Data is equivalent to asset.
Information security definition.
Are Information Security & Cyber Security same ?
CIA Triad (Objectives of Cyber Security)
Summarization Of CIA
AAA of Security Introduction.
Authentication
Five Methods Of Authentication
Authorization
Accounting
Non-Repudiation
Summarization Of AAA
Types Of Hackers.
Scenario To Understand Threat, Vulnerability, Exploit, Risk & Impact.
Cyber Security Threats
Threat Category - Malware
Threat category - Un-authorized Access.
Threat category - System Failure.
Threat Category - Social Engineering
Threat Category - Natural Calamities
Threat actors and it's types
Threat actor - External
Threat Actor - Internal
Vulnerabilities
Risk
Exposure
Types of controls: Physical, Technical, Administrative,
Functionalities Of Security Controls.
Summarization of threat actor, threat, vulnerability, risk and impact.