
Identify risk as the potential for negative organizational impact, including data and monetary loss, and describe threats, vulnerabilities, and natural, anthropomorphic, and user-driven risks.
Perform risk analysis to identify threats and vulnerabilities using qualitative or quantitative methods, then use CIA asset inventory and BIA to value, prioritize, and protect critical assets.
Identify who should sit on the ECB and how security representatives bring essential operations perspectives. Use a 'yes, but' approach, implicitly approve with required controls, budgets, and risk acceptance.
Learn continuous monitoring to secure IT environments through vulnerability scans and pen tests. Understand zero-day exploits and the value of third-party, non-destructive testing for safe risk validation.
Explore plain text and cipher text, encryption and decryption, the cryptographic key and key space, and contrast symmetric versus asymmetric encryption with initialization vectors.
Explore how Alice and Bob establish a session key by encrypting a symmetric key with Bob's public key, optimizing confidentiality and efficiency in online sessions.
Learn how public key infrastructure uses asymmetric encryption and hashing to issue digital certificates signed by certificate authorities, with registration authorities verifying identities and browsers validating certificates against revocation lists.
Explore how network devices route traffic through ports, detailing well-known, registered, and dynamic ranges and common protocols such as web traffic, email, SMTP, and SSL.
Explore the network boundary and the dmz to manage risk between internal systems and the external world, and examine firewalls, bastion hosts, honeypots, and honeynet.
Learn how firewalls use static inspection to enforce set rules across traffic, and dynamic inspection to detect anomalies, while employing deep packet inspection, stateful inspection, proxies, and web application firewalls.
Apply AAA concepts—authenticate users, grant authorization, and log actions for accountability—while reviewing protocols like IAP and LIHEAP that may appear on exams.
Explore centralized storage with san and nas, centralizing data for use by multiple users, review raid levels (raid 0, 1, 5, 10, 15), and consider security, availability, and cost.
Explore how malware forms a botnet of zombies to wage distributed denial of service attacks, perform brute force encryption attacks, mine bitcoin, and store illicit files across compromised devices.
Implement anti malware solutions—hardware, software, or both—on hosts or at network gateways, with signature updates and vendor monitoring to detect infections, enabling defense and depth while balancing productivity.
Explore the three cloud service models—IaaS, PaaS, and SaaS—and compare who manages hardware, OS, platforms, applications, data, and users, along with cost and flexibility implications.
Explore software defined networking in cloud data centers, revealing the three planes—application, control, and data—plus northbound and southbound interfaces and east-west traffic.
Injection attacks are a top threat in OWASP's Top 10, covered in the database section. Download the free OWASP Top 10 document (2017 version) to quickly understand the exam concepts.
Explore static analysis with white box testing, dynamic analysis with black box testing, and coverage metrics, automated and human reviews using known good and bad data, while avoiding live data.
Examine acceptance testing where customers verify software in a test environment mirroring production and sign acceptance. Compare the older certification and accreditation approach with the move to continuous monitoring.
Adopt strong password policies and remove default admin or guest credentials, use NAT and PAT to conceal internal IPs, and centralize logs with Simsim systems for automated and manual review.
If you’re a professional in the field of IT, IT security, audit, or general security, you know that certifications are the key to better job opportunities and higher pay. There are many available, from various sources; many of them come from manufacturers and vendors of specific products, many from certification bodies and organizations, and some from government and quasi-government sources. The certifications usually require that you pass a multiple-choice test.
This course is meant to help you pass these tests. It contains lists and descriptions of material usually tested, regardless of certifier or test.
I have the SSCP, CISSP, CCSP, CISM, CCSK, and Security+ certifications, and used to hold the SANS GSEC. I’ve taught prep courses for most of them, and am familiar with material that shows up over and over again, on all of them. I’m not an expert in any single area of IT or INFOSEC, nor am I even all that smart....but I am good at passing multiple-choice tests, and I am told that I’m good at conveying information. So I’m offering that knowledge to you.
I hope you find this course useful
This course is not a standalone product: you won’t be able to take the course and just pass the test. The course is designed for practitioners in the field: people who have trained and worked in INFOSEC for some time, who have the background and essentials to get the certifications. In addition to the course, you should be reviewing other sources (especially the sourcebook from the certifying body for the test you’re taking), including sample tests, primary sources, books, other classes, and online content. This course will show you the information you need to know, but you may have to do some additional research to get more comprehensive details about that information; I recommend Wikipedia and other online sources, because they are both exhaustive and -often- free.
I hope the course helps you pass your exam and get your certification. Please let me know what you think of it, whether you think it helped your study efforts or if you know some way it could be improved. Good luck!