In today’s hyper connected world, computers and data are easily accessible over the internet. These computers and with it confidential data are vulnerable to attacks and unauthorized access. The technologies and processes used to protect computers, networks, applications and data against such attacks is called cyber security. There I a threat/ possibility of the computers or devices or network getting damaged (cyber threats).
Cyber threats are evolving rapidly with a higher degree of complexity day by day. Enterprises are facing greater risks to enterprise data, applications, and infrastructure. Because of which there is a need to implement cyber security solutions across all industries and enterprises. Most common cyber threat are hacking, spam, phishing and botnets.
The course covers below topics
- Fundamentals of Cyber security
- Components of cyber security
- Solutions for cyber security
- SIEM
- SPLUNK
Cyber security comprises of the below components.
Information and Data Security – Information security is preventing unauthorized access, usage, modification and destruction of information/data. Software and tools used for information security mainly work on the three parameters – Confidentiality, Integrity and Availability
Network Security – network resources are first point of access over the internet. External attackers can gain access to servers and storage and also the underlying information once they gain access to network devices. Network security includes both hardware and software technologies to protect usability and integrity of the network like firewalls, Network access controls, Intrusion prevention systems, Network segmentation etc.
Application Security – Applications should have inbuilt security at each stage of the SDLC (software development lifecycle) – design, development, deployment, rollout and support.
Endpoint security – Endpoint security refers to protecting the network devices when accessed via remote devices like laptops, mobile devices etc. Example if a computer is connected over the network with confidential data, the endpoint encryption protects the data against unauthorized users.
Cloud Security – Cloud by design uses shared resources, so proper security is a priority for those using cloud computing. The cloud provider incorporates security controls for data security and regulatory compliances.
Mobile Security – Mobile security is security of information stored on mobile devices for those using mobile computing. Also known as wireless security and focuses on protection of portable computing devices like smartphones.
Operational security – Operational Security (OPSEC) focuses on protection of critical information that can be used by competition.
Web security – is related to security of websites that can be accessed over internet. Webservers by design are connected to outside world via the network so priority should be deployment of simple web servers that have few open ports and few services.
Disaster Recovery / Business continuity – Focuses on solutions that businesses should implement and plan for in case of a disaster. Solutions include providing alternate processing sites and mechanisms to restore computer systems for business to continue seamlessly without disruption..
Course provides details of Security software and tools available to provide security for systems, applications, networks and other components. You will get an understanding of many types of software’s like antivirus software, encryption software, firewall software, Spyware removal software etc. Other enterprise security solutions include vulnerability Management, identity and access management, Fraud Management, Digital Forensics etc.
SIAM – Focuses on seamless integration of interdependent services from multiple service providers to provide end to end services. The course provides fundamentals of IT delivery and operational processes, the relationship of SIAM with ITIL and SIAM related technology to deliver multi-vendor projects efficiently.
Splunk – Splunk is a tool used to process machine data and extracts relevant data with which you can easily locate where and what is the problem. It is a software platform to search, analyse and visualize the machine data gathered from the websites, applications, sensors, devices etc at real time.