Develop yourself to IT Security Analyst (incl. guidance)

A structured approach to security allows for the efficient management of security controls. This course covers risk management, user and session management, and encryption.

Explore selective auditing, which provides valuable insights to activity on a network, and also Incident response plans, which are proactive measures used to deal with negative events.

Companies that don’t understand the threats facing their information are at risk of costly data breaches. Explore common security threats, types of network attacks, and the human element of security threats.

Companies mishandle data because personnel misunderstand practices, risks, and implications. Explore data protection, devices and social media, and good governance through security principles and programs.

• In this 13-video course, discover key Advanced Persistent Threat

• (APT), concepts such as defense and best practices. Explore common
• APT attacks and mitigation techniques that can be used, APT tools,
• and how to create effective APT checklists. You will begin with an
• introduction to APT and its purpose, then look at the steps of the
• APT lifecycle. Learners will examine motives behind an APT and
• probable targets, and learn to identify APT defense best practices.
• Next, you will explore methods that can be used to strengthen APT
• defenses, and then recall the method(s) to deal with APTs. You will
• then take a look at the Equation aka APT group and its involvement
• in various cyber crimes. Another tutorial examines the key tools
• that are used when conducting an APT. Define risk assessment
• processes that can help you protect your assets. In the final
• tutorial in this course, you will be asked to identify key points
• for creating an effective checklist to address APT attacks.

Discover the key NAC concepts such as NAC features, the importance of NAC in a network, various NAC elements, authentication, and its implementation. Explore the risks and challenges associated with BYOD and IoT.

Discover key concepts related to subnetting, VM, Container, and DNS security. Examine tips and tricks used in subnetting and subnetting advantages. Explore CIDR notation, deployment and security considerations for VMs and containers, and types of DNS attacks and mitigation strategies.

Explore the key concepts of common protocols in use, and discover the security issues of TCP/IP model and security protocols.

• In this 8-video course, learners will discover the key concepts

• of different security topologies and the key role they play in
• network security. Begin with an introduction to security
• topologies, which define the network design based on security
• requirements. You will then explore the design goals for security
• topology, the elements used to ensure that the information is
• secure, which means that you need the concepts of confidentiality,
• integrity, and availability (CIA), of information in a proper way,
• and it needs to be secured. You also need to practice
• accountability along with CIA concepts. Next, you will examine
• advantages and disadvantages of different security topologies,
• which are the Intranet, the Internet, and various other topologies.
• You will take a look at the impact of integrating cloud topologies,
• and also delve into the various layers of security in cloud
• computing. The final tutorial in this course explores the different
• methods used to harden the components of security topologies.

Discover key DevOps concepts such as continuous security and security monitoring, benefits of using DevOps and best practices of DevOps security. Explore the secure DevOps lifecycle and learn about security risks and the various tools used for DevOps testing.

• Discover the importance of implementing security governance in

• an organization. Explore the differences between governance and
• management, types of governance frameworks, and the roles of senior
• management. Ensuring good IT security governance, risks and
• opportunities, security governance programs, and governance
• framework structure is also covered.

• Explore various honeypot concepts, such as the types of

• honeypots, roles and uses of a honeypot, and how honeypot data
• analysis is used. In this 12-video course, you will examine
• strengths and weaknesses of a honeypot and how it is placed in
• networks. Key concepts covered in this course include the honeypot
• system itself, configured to detect, deflect, or counteract any
• unauthorized attempt to gain access to information; learning the
• various types of honeypots that can be used focusing on low and
• high interaction level types; and learning about the role played by
• honeypots in overall network security. Next, you will examine learn
• honeypot uses and disadvantages; learn the deployment strategies of
• a honeypot; and learn the various open-source and commercial
• honeypot products available on the market. Finally, learners will
• observe how honeypots are placed in a network; how to install and
• configure a honeypot by using KFSensor honeypot software; and
• explore how honeypot data analysis is captured through automated
• software or through a manual method.

Explorer the key pen testing concepts such as vulnerability assessment, types of pen testing, and threat actors. Discover why pen testing is needed and the tools used for pen testing.

• Practice Security Analysts tasks such as using file hashing, file encryption, Wireshark and performing code reviews. Then, test your skills by answering assessment questions after installing and configuring LXD, using group policy, configuring a honeypot and exploring the Metasploit framework.
• This lab provides access to tools typically used by Security Analysts, including:
• � Kali Linux
• � Windows 10 and Windows Server 2019
• � PowerShell 5.1
• � Wireshark
• � Visual Studio Code
• This lab is part of the Security Analyst track of the Skillsoft Aspire Security Analyst to Security Architect journey.

• Final Exam: Security Analyst will test your knowledge and
• application of the topics presented throughout the Security Analyst
• track of the Skillsoft Aspire Security Analyst to Security
• Architect Journey. Learners seeking to test their knowledge and
• application of Security Analyst skills and those seeking to
• complete the Security Analyst track of the Skillsoft Aspire
• Security Analyst to Security Architect Journey.