Cybernous

CISSP Week1 - CISSP High Level Overview

Security Governance - Value Creation and Corporate Governance

Security Governance - What it means practially

Security Governance - Misalignment Use case

Security Governance - Type of plans

Security Governance - Due care and Due Diligence

Security Governane - Policies

Security Governance - Standards and Baselines

Security Governance - Procedures and Guidelines

Professional Ethics

NIST Cyber Security Framework (CSF) Ver 1.1

NIST Risk Management Framework (RMF)

ISO/IEC 27000 Series

Frameworks

Human Resource Security

Risk Management

Risk Assessment and Analysis - Brainstorming

Threat Modelling

Legal Systems

Cybercrimes

US Data Breach Regulations-

OECD Privacy principles-

GDPR

Transborder Data Flow, Data localization and Jurisdictions

Import Export Rules

Intellectual Property & Software Piracy

Change Management

BCDR Overview

Information Assets and evaluation

Domain 2 - Asset Security (Whiteboarding Notes)

Data Governance Policy and Standards

Data Life Cycle & Controls

Data Protection Methods and Controls

Data Protection Methods and Controls (Contd..)

Domain 3 Overview and System Architectures (Part-1)

Domain 3 Overview and System Architectures (Part-2)

Domain 3 - Difference between VM and Container

Domain 3 - Threat Modelling - Part-2

Domain 3 -Secure Desing Principles (Part-1)

Domain 3 -Secure Desing Principles (Part-2)

Domain 3 -Secure Design Principles (Part-3)

Domain 3 -Security models - Multilevel Systems (Part-1)

Domain 3 -Security models - Multilevel Systems (Part-3)

Domain 3 - Security capability of Systems (HSM)

Domain 3 - Security capability of Systems (Bus Encryption & SED)

Domain 3 - Security capability of Systems (TEE & Atomic Execution)

Domain 3 - Security evaluation requirements

Domain 3 - Security Evalutaion (TCSEC-ITSEC-Common Criteria)

Physical Security Part-1

Physical Security Part-2

Physical Security Part-3 (Fire Suppression)

Cryptology Fundamentals & History

Symmetric Cryptography (Pros and Cons)

Asymmetric Cryptography and Comprison with Symmetric

Hashing

Hashing Algorithms

Cryptography Key Management

Attacks on cryptography

Attacks on Cryptography -2

Web of Trust and Quantum Cryptography

D4 - Network Topologies

D4- LAN-MAN-WAN

D4 - Media Access Technologies

Internet Protocol

IPV4-IPV6 Intercommunications

Network Ports & Sockets

Layer 2 - Detailed

Layer 2 Security Standards

TCP and UDP

DHCP

Layer 2 protocols

Routing Protocols

WAN-MAN Connectivity

WAN Technologies

ICMP

DNS

Wireless Standards

Wireless Standards -1

Wireless Security

Wireless LAN - Site Survey & Attacks on Wi-Fi

Network Access Control (IEEE 802.1X)

Securing the Network & Network Segmentation

Microsegmentation

Network Devices

Firewalls

Firewall Placement

Proxies

Load Balancers

IDS IPS

DLP

Anti Malware Solutions

Honeypots

SIEM

Encryption during Transmit (SSL-TLS)

Link & End-to-End Encryption

Multilayer Protocols

Converged Protocols

Remote Access Protocols, VPN and IPSEC

Network Attacks

Content Delivery Network (CDN)

Endpoint Security

Email Security

Cellular Communication Security

IAM Part-1

Authentication - Something you know

Authentication - Something you are

Accountability

Access contol Models - DAC-MAC-RBAC

Access Control Model - RuBAC-ABAC-RiskBAC

Session Management

Identity Proofing

SSO-SAML

Kerberos

XML Standard in Access Control

Remote Authentication Protocol - RADIUS

Remote Authentication Protocol - Diameter and TACACS+