Course 2 - Access Controls

This is the second course under the specialization SSCP. In this course, we will examine the business of controlling how our systems, services, resources and data can be Safely accessed only by those authorized to do so. We will discuss authentication methods, trust, the identity management life cycle and access control models. Course 2 Learning Objectives After completing this course, the participant will be able to:  - Categorize identity and access management implementation authentication methods.  - Discuss the importance of trust from a security standpoint.  - Compare levels of trust among various relationships and internetwork architectures.  - Explain the implications of trust among third-party connections.  - Differentiate among the activities of the identity management life cycle.  - Categorize various access control models.  - Define the elements, methods, and processes used when administering access control models.  Who Should Take This Course: Beginners Experience Required: No prior experience required

Course 3 - Risk Identification, Monitoring and Analysis

This is the third course under the specialization SSCP In this course, we will explore how to manage the risks related to information systems. It is time to bring these ideas together in a context of continuous maturity modeling, measuring, and monitoring, which we will see is focused on the here and now. Risk alignment works best at the strategic, long-term level of planning; risk maturation, by contrast, can be most effective when considered in the day-to-day of business operations. This is sometimes called operationalizing the approach to risk management and maturation. Course 3 Learning Objectives After completing this course, the participant will be able to:  - Identify common risks and vulnerabilities. - Describe risk management concepts.  - Recognize risk management frameworks.  - Provide examples of appropriate risk tolerance.  - Provide examples of appropriate risk treatment.  - Identify risks of noncompliance with laws and regulations.  - Identify appropriate methods for risk management frameworks implementation.  - Indicate the range and scope of risk review.  - Identify the components of risk review.  - Describe vulnerability assessment activities used to examine all aspects of network and system security.  - Review the steps for monitoring, incident detection, and data loss prevention.  - Classify the use of tools that collect information about the IT environment to better examine the organization’s security posture.  - Identify events of interest to focus on those that may be part of an attack or intrusion.  - Select methods for managing log files.  - Describe tools and methods for analyzing the results of monitoring efforts.  - Identify communication requirements when documenting and reporting the results of monitoring security platforms.  Who Should Take This Course: Beginners Experience Required: No prior experience required

Course 4 - Incident Response and Recovery

This is the fourth course under the specialization SSCP In this course, we will focus on incident response and recovery. We will explore the incident life cycle as defined by NIST and continue with a deeper look at supporting forensic investigations. We will also extend these ideas and concepts around the theme of business continuity and disaster recovery. Course 4 Learning Objectives After completing this course, the participant will be able to:  - Identify the elements of an incident response policy and members of the incident response team (IRT).  - Evaluate the security professional’s role in supporting forensic investigations.   - Explain how the security professional supports activities of business continuity and disaster recovery planning. Who Should Take This Course: Beginners Experience Required: No prior experience required

Course 5 - Cryptography

This is the fifth course under the specialization SSCP. In this course, we will explore the field of cryptography, including public-key infrastructures (PKIs), certificates, and digital signing. Here we enter the realm of confidentiality, integrity, and availability, since we use cryptography to protect data from unauthorized disclosure and improper modification and use encryption to regulate the ability of users to log in to systems and applications. Course 5 Learning Objectives After completing this course, the participant will be able to:  - Recognize the impacts of cryptography on confidentiality, integrity, and authenticity.  - Determine the requirements for cryptography when handling sensitive data.  - Identify regulatory and industry best practices in cryptography.  - Define cryptography entropy.  - Differentiate common cryptographic techniques used to enhance the security of sensitive data including hashing, salting, symmetric/asymmetric encryption, and elliptic curve cryptography.  - Identify the features and requirements of nonrepudiation.  - Compare the strength of different encryption algorithms and keys.  - Describe the process of identifying and addressing cryptographic attacks.  - Define the features of and the implementation process of secure services and protocols.  - Discuss common use cases for secure services and protocols.  - Explain limitations and vulnerabilities in the implementation of secure protocols.  - Summarize fundamental key management concepts.  - Describe the features of the Web of Trust (WoT) in relation to cryptographic protocols.  Who Should Take This Course: Beginners Experience Required: No prior experience required

Course 7 - Systems and Application Security

This is the seventh course under the specialization SSCP. This course discusses two major changes in recent years to how we use our data: going mobile and using the cloud. First, we use our data on the go by means of data services provided to our mobile phones, Wi-Fi, and other devices. Second, so many of the enhanced functions we take for granted in our daily personal and professional lives are made possible by cloud services, where our data is stored or processed.  Course 7 Learning Objectives After completing this course, the participant will be able to:  - Classify different types of malware. - Determine how to implement malware countermeasures. - Identify various types of malicious activities.  - Develop strategies for mitigating malicious activities.  - Describe various social engineering methods used by attackers.  - Explain the role of behavior analytics technologies in detecting and mitigating threats.  - Explain the role and functionality of host-based intrusion prevention system (HIPS), host-based intrusion detection system (HIDS), and host-based firewalls.  - Evaluate the benefits of application whitelisting in endpoint device security.  - Explain the concept of endpoint encryption and its role in endpoint security.  - Describe the role and functionality of Trusted Platform Module (TPM) technology in providing hardware-based security features.  - Identify the steps in implementing secure browsing practices using digital certificates and secure communication protocols.  - Explain the concept of endpoint detection and response (EDR) and its role in providing real-time monitoring, detection, investigation, and response capabilities to identify and mitigate advanced threats and security incidents on endpoint devices.  - Identify provisioning techniques for mobile devices.  - Explain the concept of containerization and how it contributes to effective mobile device management.  - Explain how encryption contributes to effective mobile device management.  - Describe the process of Mobile Application Management (MAM) to effectively manage the life cycle of mobile applications.  - Distinguish among public, private, hybrid, and community deployment models in cloud security.  - Distinguish among various service models and their impact on cloud security practices.  - Describe virtualization technologies and their role in maintaining cloud security.  - Identify legal and regulatory concerns related to cloud security.  - Determine strategies to implement data storage, processing, and transmission while maintaining cloud security.  - Explain the requirements and considerations associated with third-party services and outsourcing in cloud storage.  - Explain the concept of the shared responsibility model in cloud storage.  - Identify steps to manage and secure hypervisor environments.  - Explain how to deploy, configure, and maintain virtual appliances within virtualized environments.  - Determine the process for managing containerized environments.  - Describe the best practices of storage management in virtualized environments.  - Develop strategies for ensuring business continuity and resilience in virtualized environments.  - Analyze potential threats and attacks targeting virtual environments. Who Should Take This Course: Beginners Experience Required: No prior experience required