Curriculum
SOC Analyst with Gen AI
Cybersecurity Fundamentals
0/6
-
What is Cybersecurity
Preview -
Core concepts: Confidentiality, Integrity, Availability (CIA Triad)This lesson is locked because you haven't completed the previous one yet. Finish the previous lesson to unlock this one.
-
Common threats, attack vectors, and threat actorsThis lesson is locked because you haven't completed the previous one yet. Finish the previous lesson to unlock this one.
-
Security policies, risk management, and compliance (NIST, ISO 27001)This lesson is locked because you haven't completed the previous one yet. Finish the previous lesson to unlock this one.
-
Introduction to the cybersecurity lifecycle: Identify, Protect, Detect, Respond, RecoverThis lesson is locked because you haven't completed the previous one yet. Finish the previous lesson to unlock this one.
-
Install EnvironmentThis lesson is locked because you haven't completed the previous one yet. Finish the previous lesson to unlock this one.
Linux Fundamentals for Security Analysts
0/2
Network Fundamentals
0/5
Defense Frameworks & SOC Operations
0/5
Traffic Analysis & Network Security Monitoring (NSM)
0/1
Phishing Simulation & Analysis
0/1
Malware Analysis
0/1
Threat Intelligence
0/1
Web Application & Server Vulnerability Assessment
0/12
Extended Detection and Response (XDR) with Wazuh
0/4
What is Cybersecurity
Cybersecurity refers to the practice of protecting systems, networks, data, and programs from digital attacks, unauthorized access, damage, or theft. As our world becomes increasingly digital, cybersecurity has become a critical component of personal privacy, corporate integrity, and national security.
Key Areas of Cybersecurity:
-
Network Security
Protects the integrity and usability of network infrastructure by preventing unauthorized access, misuse, or disruption. Tools include firewalls, intrusion detection systems (IDS), and virtual private networks (VPNs).
-
Application Security
Involves measures taken during the development and deployment of software to prevent vulnerabilities. Examples include input validation, secure coding practices, and regular code reviews.
-
Information/Data Security
Focuses on safeguarding data at rest, in transit, and in use. Techniques include encryption, data masking, and access controls.
-
Endpoint Security
Secures end-user devices like computers, smartphones, and tablets. Antivirus software, endpoint detection and response (EDR), and device encryption are common tools.
-
Cloud Security
Protects data and applications hosted on cloud platforms. Involves identity management, encryption, and ensuring compliance with security standards.
-
Identity and Access Management (IAM)
Ensures that only authorized users have access to specific resources. Includes multi-factor authentication (MFA), role-based access control (RBAC), and single sign-on (SSO).
-
Operational Security (OpSec)
Involves processes and decisions for handling and protecting sensitive information. Includes risk assessments, security policies, and incident response planning.
-
Disaster Recovery and Business Continuity
Plans and procedures to recover and protect IT infrastructure after a cyberattack, natural disaster, or other disruptions.
-
Security Awareness Training
Educates users about threats like phishing, social engineering, and safe online behavior. A critical line of defense since human error is a leading cause of breaches.