KnowledgeCity

Cybersecurity

Cybersecurity consists of all the technologies and practices that keep computer systems and electronic data safe.

Cybersecurity consists of all the technologies and practices that keep computer systems and electronic data safe. This course is designed to help you protect your systems and data by understanding network architecture, identifying security tools, and understanding malware. You will also learn the different classes of attacks, how to categorize incidents, and application security.

Author: رفيق واياني

Duration: 1h 26m · 16 lessons
Level: Beginner
Language: English

Skills you’ll gain

Cyber DefenseCyber SafetyCyber SecurityCyber Security ManagementCyber Security SystemsCybersecurity Compliance

What You'll Learn

  • Understand network architecture and how it supports system and data security
  • Identify common security tools used to protect computer systems
  • Recognize malware types including viruses, worms, and Trojans
  • Distinguish the different classes of attacks and categorize security incidents
  • Apply application and network security practices, including defense in depth
  • Explain virtual machines and hypervisors and their role in security

Key Takeaways

  • Cybersecurity consists of all the technologies and practices that keep computer systems and electronic data safe.
  • Protecting systems and data involves understanding network architecture, identifying security tools, and understanding malware.
  • The course covers the different classes of attacks and how to categorize incidents.
  • Defense in depth and network protection are core approaches to securing systems.
  • Application security and virtual machine hypervisors are part of a complete security picture.

Frequently Asked Questions

What does this course cover?

It covers network architecture, identifying security tools, understanding malware, the different classes of attacks, how to categorize incidents, application security, defense in depth, network protection, and virtual machine hypervisors.

What is cybersecurity according to this course?

Cybersecurity consists of all the technologies and practices that keep computer systems and electronic data safe.

What skills will I gain from this course?

The course builds skills in cyber defense, cyber safety, cyber security, cyber security management, cyber security systems, and cybersecurity compliance.

What types of malware does the course address?

The course covers malware including viruses, worms, and Trojans.

Does the course cover virtual machines?

Yes, it includes lessons on virtual machines and hypervisors, including a hypervisor demo.

Transcript

Show transcript (free preview lesson)

Transcript of the free preview lesson. Remaining lessons unlock with the full course.

So here we are talking about cybersecurity. And when you think about cybersecurity, what comes to mind? You're really talking about security of data that is electronic in nature, and when you talk about security for data that is electronic in nature, quite a few things come to mind. First of all, this INFOSEC realm right over here that discusses the confidentiality, integrity, availability, or the CIA triad, if you will, that is part of INFOSEC. However, when you're dealing with information assurance, when you extend that, you also deal with authentication and non-repudiation. And what does that really mean? Well, here's the thing. There's a few misunderstandings about the way this goes, and I want to clarify those things. The confidentiality piece means not only that you are protecting the data, but you're also training and making people aware of what to protect. Sometimes it's very obvious; other times it's not. So confidentiality surrounds and information security and cybersecurity surrounds a lot of components and a lot of pieces of the puzzle. And here, if you will, as you see, that it incorporates protection, detection, and reaction capabilities of information systems. You need to know what to protect, how to detect when there's something going wrong, and what actions to take in order to, well, correct what has gone wrong. Confidentiality, that approach, if you will, thinking about making sure that things are protected, you're talking about from the outside layer in. So from the outside, people enter your network, and then your machines, and then your applications, and then they get to the data. Maintaining the integrity of the data is a very key piece of the puzzle, and making sure that the data's available only to those that are allowed to have it is also very important. Making certain that people are who they say they are. Authenticating that they are who they say they are is a very important piece of the equation. As well as when people do things that they cannot deny that they did them. If John manages to send an email, non-repudiation piece, would be able to prove that John's the one that sent that email from that workstation, at this time, from this source. And the system would authenticate that John is who he says he is. So this CIA, confidentiality, integrity, and availability, very big piece, and then authentication and non-repudiation is added to the information assurance. So what is information assurance? I'm kind of working backward, aren't I? These are measures, measures that protect and defend information, data and information systems, the data that is driven by those systems, by ensuring that availability, integrity, authentication, confidentiality, and non-repudiation is done. This also includes, this information assurance piece, includes providing the restoration of information systems. This is a pretty big piece of the equation. You may have heard of Rule of Nine as it relates to high availability. Restoration of information. Rule of Nine says do you want the system to be up 90% of the time, 99% of the time? 90% of the time is one nine. 99% of the time is two nines. 99.9% of the time is three nines. 99.99% of the time is four nines, and so on. Most critical systems have to follow some kind of a Rule of Nines or high availability. That's this aspect right over here. Data has to be proven that it is viable and correct. Integrity of the data is very critical. You cannot say that the address on the system that we have for you is not correct. The purchase orders that we have on the system belong to the wrong customer. That is not maintaining the integrity of the data. If you cannot rely on the integrity of the data, the whole system is really in jeopardy, is it not? So otherwise, if your protecting data that it, well, that the integrity's not protected on, you're protecting garbage. What's the use of protecting or making sure that confidentiality's maintained on the data that doesn't really have any kind of integrity associated with it? Availability is that Rule of Nines that I was talking about. Authentication is managed in many different ways. Authentication, trying to prove you are, is also done by bio-metric, by your fingerprints, by your retina scan, by your facial recognition, and so on, along with user ID and password, which is the way it's done in many places. So keep that in mind as far as information systems and cybersecurity goes.

Learn on the Go

Take your learning anywhere — the KnowledgeCity mobile app lets you watch lessons on the go.