Career Ready & Elective Courses / Full Catalog / Operational Cybersecurity 1b: Security and Planning in the Workplace

Operational Cybersecurity 1b: Security and Planning in the Workplace

More and more, companies are under attack by malicious cyber attackers compromising the security of sensitive employee, customer, and societal data. In this course, you will dive into data security in the workplace and will learn ways to mitigate cyber threats that lurk in dark corners. You will step into the familiar shoes of CISO, this time at a startup company, making decisions about access and authentication protocols, security planning, and expanding the business in a safe way. Lastly, you will explore real-world security breaches, how they were solved, and step-by-step instructions to setup robust security policies. Let’s continue forging your cybersecurity stronghold against cyber attackers and keep sensitive data secure.

Review Course Outline

Units at a Glance

Unit 1: Access Control in a Corporate Context

What will you learn in this unit?

  • Explain the components that allow a user to be authorized on a network
  • Understand access control models and their uses
  • Recommend policies to protect against third-party vulnerabilities
  • Discuss the 2019 Capital One data breach

Unit 2: Authentication at Work

What will you learn in this unit?

  • Explain authentication factors
  • Understand how biometrics are used as authentication factors
  • Identify protocols used in network-level authentication
  • Consider the use of single sign-on (SSO) and the implementation of authentication on switches and routers
  • Think about a perfect protocol scenario

Unit 3: Scenarios: Testing and Troubleshooting

What will you learn in this unit?

  • Explain the need for continuous monitoring
  • Understand the basics of digital forensics
  • Describe the vulnerability scan process
  • Consider the penetration testing process
  • Plan possible post-scan actions

Unit 4: Response and Recovery Planning

What will you learn in this unit?

  • Identify the difference between incident response and disaster recovery plans
  • Understand the NIST 800-61 incident response framework
  • Identify the steps in the Cyber Kill Chain®, MITRE ATT&CK, and Diamond model frameworks
  • Respond to a mock security incident
  • Conduct a post-incident analysis

Unit 5: Security Awareness and Training

What will you learn in this unit?

  • Identify security awareness training frameworks
  • Explain various data classification categories
  • List examples of good workplace security habits
  • Consider positive security habits for Sys Admins
  • Understand hands-on learning opportunities in cybersecurity

Unit 6: Ethical Concerns in Cybersecurity

What will you learn in this unit?

  • Identify different types of computer crimes and their consequences
  • Explain different types of copyright issues in the digital era
  • Understand how to handle data ethically
  • Consider data laws that are in place in the United States
  • Describe best practices concerning ethical behavior on networks and in personal digital activities

Unit 7: Personal Device Security

What will you learn in this unit?

  • Define different device ownership models
  • Identify various security concerns related to employees bringing personal devices to work
  • Explain the purpose of mobile device management (MDM) platforms
  • List various MDM polices that can be enforced
  • Understand how Cisco Systems selected a new MDM

Unit 8: Gliders Expands

What will you learn in this unit?

  • Define the cloud and discuss why an organization may use these types of platforms
  • Identify different cloud platform security controls
  • Consider cloud application security controls
  • Understand cloud security misconfigurations

Required Materials

Physical

  • Audio recording device

 

Software

  • Word processing software
  • Spreadsheet software
  • Proprietary or open-source tool to test for technical vulnerabilities

 

Optional

  • Image editing software
  • Presentation software
  • Video recording device