Part 20 - Secure Design Principles + Risk Management

Part 20 - Secure Design Principles + Risk Management

Course content

Introduction to Trend Analysis

Introduction to Trend Analysis

Section 1

14

lessons

Week 20 - Kickoff

Module Introduction - Secure Design Principles

What is Trend Analysis?

Emerging Cybersecurity Trends

Introduction to Gartner’s Reports

XDR Capabilities Improve Accuracy and Productivity

Security Process Automation Eliminates Repetitive Tasks

Artificial Intelligence and Machine Learning

CSOs and Security-oriented Silos

Privacy is Becoming Its Own Discipline

Digital Trust and Safety Teams

Network Security Transforms from LAN to SASE

Cloud Workload Protection Controls

Zero-Trust Replaces VPNs

Secure Design Principles

Introduction

Section 1

3

lessons

Introduction Secure Design

Creating Secure Systems

Secure Design Categories

Mapping the Network

Section 2

4

lessons

Understanding What the Network is for

Threat Model

The End-to-End Approach

Mapping the Network - Knowledge Check

Making Compromise Difficult

Section 3

4

lessons

Zero-Trust' of External Inputs

Reduce Attack Surfaces

Security Controls Trust

Protecting Management and Operation Environments

Better Detection Systems

Section 4

2

lessons

Collect All Relevant Security Events and Logs

Communication Flows Between Components

Reducing Compromise Impact

Section 5

3

lessons

Segmenting Assets on a Network

Easy Compromise Recovery

Disallow Arbitrary Queries Against Your Data

Practice

Section 6

1

lesson

Practice

Introducion

Section 7

3

lessons

1

exam

Ready, Set, Lab! - Drawing a Secure Topology

Week 20 - Drawing a Secure Topology

Week 20 - Secure Design Principles - Weekly Quiz

10Questions

Secure Design Principles Glossary

Introduction

Module Introduction

Section 1

1

lesson

Module Introduction - Risk Management

What Is Risk Management?

Section 2

5

lessons

Case Study

Risk and Cyber Risk

What Is Risk Management?

Risk Management Primary Objectives

Sorting Risks

The CIA Triad Implementation

The CIA Triad Implementation

Section 1

5

lessons

Valuable Assets

The CIA Triad

CIA Triad Implementation

Assets' Threats

The CIA Triad - Knowledge Check

Security Governance

Security Governance

Section 1

5

lessons

Introduction

What Is Governance?

The Organizational Structure

The Governance Framework

Security Program

Policies, Standards, Procedures, and Guidelines

Section 2

6

lessons

The Need in Rules and Regulations

PII, PCI, and PHI Compliances

Securing Sensitive Information

Personally Identifiable Information (PII)

Payment Card Industry (PCI)

Personal Health Information (PHI)

Security Models

Section 3

1

lesson

Security Models

Intellectual Property

Section 4

1

lesson

Intellectual Property

Security Governance - Knowledge Check

Section 5

1

lesson

Security Governance - Knowledge Check

Risk Management Phases

Risk Management Phases

Section 1

8

lessons

Risk Management Goals

The NIST Risk Management Framework

Categorize

Select & Implement Controls

Assess Controls

Authorize Systems

Monitor

Risk Management - Practice

Employees Education

Employees Education

Section 1

8

lessons

The Goal of Employees Education

Patch Management

Release Management

Backup Management

Human Firewall

Employees Awareness Training

Lucy Awareness - Tool Introduction

Lucy Awareness Program - Practice

Module Closure ll

Module Closure ll

Section 1

5

lessons

1

exam

Week 20 - Key Takeaways

Week 20 - Risk Management Weekly Quiz

10Questions

Risk Management Glossary

Summary

Tools Overview

Risk Management Ongoing Learning

Your Career Guide to Success

Chapter 10

Section 1

2

lessons

Cybersecurity: Job-Search Concepts

Career Outcomes Resources

Module Closure

Section 1

2

lessons

Summary

Secure Design Ongoing Learning

ThriveDX