Course Outline:
1. Information Security Trends
o Cyber Attacks
o Cyber Security Updates
o Status of Cyber Security
2. Fundamentals of Information Security
o Evolution of Computing
o Information
o Information Security
3. Principles of Information Security
o CIA Triad
3. Information vs Cyber Security
o Difference of Information and Cyber Security
o Cyber Security Threat Landscape
o Threat Agents
o Malware
o Attack Types
4. Attack Scenarios
o SQL Injection
o Broken Authentication and Session Management
o Cross Site Scripting (XSS)
o Cross Site Scripting Request Forgery (CSRF)
o Insecure Direct Object References
o Security Misconfiguration
o Insufficient Transport Layer Protection
o Missing Function Level Access Control
o Social Engineering
o Physical Security Attacks
5. Countermeasures
o Governance
o Risk Management
o Holistic Approach to Information Security - People, Process and Technology
Schedule:
June 15-18, 2021
Tuesday-Friday, 9am-12nn
(six sessions with two hours each)