课程信息
8,577 次近期查看

100% 在线

立即开始,按照自己的计划学习。

可灵活调整截止日期

根据您的日程表重置截止日期。

初级

完成时间大约为21 小时

建议:5 hours/week...

英语(English)

字幕:英语(English)

100% 在线

立即开始,按照自己的计划学习。

可灵活调整截止日期

根据您的日程表重置截止日期。

初级

完成时间大约为21 小时

建议:5 hours/week...

英语(English)

字幕:英语(English)

教学大纲 - 您将从这门课程中学到什么

1
完成时间为 4 小时

Understand the Risk Management Process

Module Topic: Risk Visibility and Reporting, Risk management Concepts, Risk Assessment, Risk Treatment, Audit Findings. In Risk visibility and Reporting, you will learn about risk register, creating a risk register, risk register, and risk management steps. In Risk Management Concepts, you will learn about, key terms, and generic risk model with key factors - NIST SP 800-30 R1. In risk Assessment, you will learn about NIST SP 800- 30 R1 risk assessment methodology, Step 1. prepare for the assessment, Step 2. conduct the assessment, Step 2a. identify threat sources, step 2b. identify potential threat events, step 2c. identify vulnerabilities and predisposing conditions, step 2d. determine likelihood, step 2e. determine impact, step 2f. risk determination, risk level matrix, risk levels, step 3. communicating and sharing risk assessment information, step 4. maintaining the risk assessment, and risk assessment activity. In Risk Treatment, you will learn about, risk mitigation, example control: passwords, control selection, residual risk, risk transference, risk avoidance, and risk acceptance. In audit Findings, you will learn about auditors, types of audits, audit methodologies, auditor responsibilities, audit scope, documentation, and response to audit. ...
14 个视频 (总计 84 分钟), 14 个阅读材料, 1 个测验
14 个视频
Risk Management Process: Creating a Risk Register7分钟
Risk Management Process: Risk Register Risk Management Steps8分钟
Risk Management Process: Key Terms5分钟
Risk Management Process: Key Terms6分钟
Risk Management Process: Risk Assessment3分钟
Risk Management Process: Preparation Steps7分钟
Risk Management Process: Step 2b4分钟
Risk Management Process: Quantitative Analysis8分钟
Risk Management Process: Qualitative Analysis5分钟
Risk Management Process: Step 33分钟
Risk Management Process: Risk Treatment5分钟
Risk Management Process: Risk Avoidance5分钟
Risk Management Process: Type of Audits7分钟
14 个阅读材料
Risk Management Process: Risk Visibility and Reporting10分钟
Risk Management Process: Creating a Risk Register10分钟
Risk Management Process: Risk Register Risk Management Steps10分钟
Risk Management Process: Key Terms10分钟
Risk Management Process: Key Terms10分钟
Risk Management Process: Risk Assessment10分钟
Risk Management Process: Preparation Steps10分钟
Risk Management Process: Step 2b10分钟
Risk Management Process: Quantitative Analysis10分钟
Risk Management Process: Qualitative Analysis10分钟
Risk Management Process: Step 310分钟
Risk Management Process: Risk Treatment10分钟
Risk Management Process: Risk Avoidance10分钟
Risk Management Process: Type of Audits10分钟
1 个练习
Quiz 120分钟
2
完成时间为 3 小时

Perform Security Assessment Activities

Module Topics: Participate in Security and Test Results, Penetration Testing. In Participate in Security and Test Results, you will learn about vulnerability scanning and analysis, vulnerability testing software categories, vulnerability testing qualities, potential problems, host scanning, host security considerations, traffic types, security gateway types, wireless networking testing, potential security issues, searching for rogue access points, locking down the enterprise, wireless tools, war dialing, and war driving. In Penetration Testing you will learn about penetration testing modes, white box / hat, gray box / hat, black box / hat, phase 1: preparation, reporting, phase 2: reconnaissance and network mapping techniques, reconnaissance, social engineering and low-tech reconnaissance, whois attacks, DNS zone transfers, network mapping, network mapping techniques, firewalking, basic built-in tools, phase 3: information evaluation and risk analysis, phase 4: active penetration, phase 5: analysis and reporting, penetration testing high-level steps....
11 个视频 (总计 73 分钟), 11 个阅读材料, 1 个测验
11 个视频
Security Assessment Activities: Potential Problems6分钟
Assessment Activities: Security Gateway Types5分钟
Security Assessment Activities: Potential Security Issues6分钟
Security Assessment Activities: Penetration Testing6分钟
Security Assessment Activities: White Box / Hat8分钟
Security Assessment Activities: Reconnaissance4分钟
Security Assessment Activities: DNS Zone Transfers7分钟
Security Assessment Activities: Network Mapping Techniques9分钟
Security Assessment Activities: Firewalking6分钟
Security Assessment Activities: Active Penetration6分钟
11 个阅读材料
Security Assessment Activities: Participate in Security and Test Results10分钟
Security Assessment Activities: Potential Problems10分钟
Assessment Activities: Security Gateway Types10分钟
Security Assessment Activities: Potential Security Issues10分钟
Security Assessment Activities: Penetration Testing10分钟
Security Assessment Activities: White Box / Hat10分钟
Security Assessment Activities: Reconnaissance10分钟
Security Assessment Activities: DNS Zone Transfers10分钟
Security Assessment Activities: Network Mapping Techniques10分钟
Security Assessment Activities: Firewalking10分钟
Security Assessment Activities: Active Penetration10分钟
1 个练习
Quiz 220分钟
3
完成时间为 4 小时

Operate and Maintain Monitoring Systems & Analyze and Report Monitoring Results

Module Topics: Events of Interest, Logging, source Systems, Security Analytics, metrics, and Trends, Visualization, Event Data Analysis, Communication of Findings. In Events of Interest you will learn about, monitoring terminology, Intrusion Detection System (IDS)/Intrusion Prevention System (IPS), comparing IDS and IPS, types of IDS/IPS devices, deploying HIDS and NIDS, implementation issues for monitoring, monitoring control, other considerations, sample questions to consider, collecting data for incident response, monitoring response techniques, attackers, attacker motivations, intrusions, events, types of monitoring, and file integrity checkers, continuous/compliance monitoring. In Logging, you will learn about reviewing host logs, reviewing incident logs, log anomalies, log management, clipping levels, filtering, log consolidation, log retention, centralized logging (syslog and log aggregation), syslog, distributed log collectors, hosted logging services, configuring event sources (s-flow, NetFlow, sniffer), Cosco NetFlow, What is an IP Flow, IP packet attributes, understanding network behavior, how to access the data produced by NetFlow, How does the router or switch determine which flows to export to the NetFlow collector server, format of the export data, sFlow, event correlation systems (security, information, and event management (SIEM)), SIEM functions, compliance, enhanced network security and improved IT/security operations, and full packet capture. In Source System, you will learn about comprehensive application, middleware, OS, and infrastructure monitoring, hyper capabilities, and operations manager. Analyze and Report Monitoring: In Security Analytics, Metrics, and Trends, you will learn about security baseline, network security baseline, metrics and analysis (MA), systems security engineering capability maturity model (SSE-CMM), and potential metrics. In visualization topic, you will learn about data visualization tools. In Event Data Analysis, you will learn about logs, log management, log management recommendations, and Potential uses of server log data. In Communication of Findings, you will learn about checklist for report writers and reviewers. ...
12 个视频 (总计 75 分钟), 12 个阅读材料, 1 个测验
12 个视频
Monitoring Systems: IDS/IPS5分钟
Monitoring Systems: Implementation Issues for Monitoring6分钟
Maintain Monitoring Systems: Sample Questions6分钟
Maintain Monitoring Systems: Attacker Motivations7分钟
Maintain Monitoring Systems: Logging5分钟
Maintain Monitoring Systems: Log Anomalies5分钟
Maintain Monitoring Systems: Log Retention6分钟
Monitoring Systems: Compliance6分钟
Monitoring Results: Security Baseline6分钟
Monitoring Results: SSE-CMM6分钟
Monitoring Results: Potential Uses of Server Log Data6分钟
12 个阅读材料
Monitoring Systems: Monitoring Terminology10分钟
Monitoring Systems: IDS/IPS10分钟
Monitoring Systems: Implementation Issues for Monitoring10分钟
Maintain Monitoring Systems: Sample Questions10分钟
Maintain Monitoring Systems: Attacker Motivations10分钟
Maintain Monitoring Systems: Logging10分钟
Maintain Monitoring Systems: Log Anomalies10分钟
Maintain Monitoring Systems: Log Retention10分钟
Monitoring Systems: Compliance10分钟
Monitoring Results: Security Baseline10分钟
Monitoring Results: SSE-CMM10分钟
Monitoring Results: Potential Uses of Server Log Data10分钟
1 个练习
Quiz 320分钟
4
完成时间为 4 小时

Incident Response and Recovery

Module Topics: Preparation, Detection and Analysis, Containment, Eradication, and Recovery, Post-Incident Activity, Implementation of Countermeasures. In Introduction, you will learn about incident response, and basic definitions. In preparation, you will learn about elements of an incident response policy, incident response plan, training, incident response tools, communication planning, communication with law enforcement, media, requirements for effective incident handling, the incident response team, core team areas, centralized and decentralized teams, team structure, team conditions that support success, and other considerations. In Detection and Analysis, you will learn about Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), types of intrusion systems, intrusion detection techniques, false positives and false negatives, anti-malware systems, security information event management (SIEM), Incident analysis, packet sniffers, Inline SSL decryption devices, incident documentation, records, assessing risk, response, containment strategy considerations, Delaying containment, areas of focus, defining an incident, triage, and notification. In Containment, Eradication, and Recovery, you will learn about common containment activities, and eradication. In post-incident activity, you will learn about effective incident response. In implementation of Countermeasures, you will learn about implementation steps. ...
13 个视频 (总计 77 分钟), 13 个阅读材料, 1 个测验
13 个视频
Incident Handling: Preparation6分钟
Incident Handling: Training6分钟
Incident Handling: Communication Planning7分钟
Incident Handling: The Incident Response Team7分钟
Incident Handling: IDS and IPS4分钟
Incident Handling: Intrusion Detection Techniques7分钟
Incident Handling: Anti-Malware Systems2分钟
Incident Handling: Packet Sniffers6分钟
Incident Handling: SSL Decryption Devices4分钟
Incident Handling: Records6分钟
Incident Handling: Delaying Containment6分钟
Incident Handling: Containment, Eradication, and Recovery4分钟
13 个阅读材料
Incident Handling: Incident Response10分钟
Incident Handling: Preparation10分钟
Incident Handling: Training10分钟
Incident Handling: Communication Planning10分钟
Incident Handling: The Incident Response Team10分钟
Incident Handling: IDS and IPS10分钟
Incident Handling: Intrusion Detection Techniques10分钟
Incident Handling: Anti-Malware Systems10分钟
Incident Handling: Packet Sniffers10分钟
Incident Handling: SSL Decryption Devices10分钟
Incident Handling: Records10分钟
Incident Handling: Delaying Containment10分钟
Incident Handling: Containment, Eradication, and Recovery10分钟
1 个练习
Quiz 420分钟
5
完成时间为 5 小时

Understand and Support Forensic Investigations & Business Continuity and Disaster Recovery Plan

Module Topic: Forensic Investigations, Emergency Response Plans and Procedures, Disaster Recovery Planning, Interim or Alternate processing Strategies, Backup and Redundancy Implementation, System and Data Availability, Testing and Drills. Understand and Support Forensic Investigations: In Forensic Investigations, you will learn about crime scene, live evidence, Locard's principle, criminal behavior, incident response team, general guidelines, rules of thumb, evidence gathering, Hash algorithms, criminal charges, documentation, five rules of evidence, media analysis, network analysis, software analysis, author identification, content analysis, context analysis, hardware/embedded device analysis, NIST recommendations, and incident response. Understand and Support Business Continuity Plan: In Emergency Response Plans and Procedures, you will learn about business continuity planning, establish a business continuity program, Business Impact Analysis (BIA), key concepts, maximum tolerable downtime (MTD), Recovery Time Objective (RTO), Recovery Point Objective (RPO), Financial and Nonfinancial impacts, stakeholder input, BIA completion process, BIA project stages, Identify critical IT resources, Identify disruption impacts, and development recovery priorities. In Disaster Recovery Planning, you will learn about Identity types of potential disasters, assets, personnel considerations, and related documents. In Interim or Alternate Processing Strategies, you will learn about cold site, warm site, hot site, multiple processing sites, and mobile sites. In Backup and Redundancy Implementation, you will learn about full backup, differential backup, incremental backup, evaluating alternatives, Off-site storage, electronic vaulting, and remote journaling. In System and Data Availability, you will learn about clustering, high-availability clustering, load-balancing clustering, redundant array of independent disks (RAID), data redundancy techniques, and RAID levels. In Testing and Drills, you will learn about checklist test, structured walkthrough test, simulation testing, parallel testing, full interruption testing, and plan review and maintenance. ...
18 个视频 (总计 106 分钟), 18 个阅读材料, 1 个测验
18 个视频
Forensic Investigation: General Guidelines7分钟
Forensic Investigation: Hash Algorithms7分钟
BCP and DRP: Emergency Response5分钟
BCP and DRP: Comparing BCP and DRP5分钟
BCP and DRP: Business Impact Analysis3分钟
BCP and DRP: Recovery Time Objective5分钟
BCP and DRP: BIA4分钟
BCP and DRP: Business Continuity Activity4分钟
BCP and DRP: Disaster Recovery Planning7分钟
BCP and DRP: Related Documents6分钟
BCP and DRP: Multiple Processing Sites3分钟
BCP and DRP: Backup and Redundancy Implementation7分钟
BCP and DRP: Off-Site Storage6分钟
BCP and DRP: RAID Levels4分钟
BCP and DRP: RAID Levels7分钟
BCP and DRP: Testing and Drills5分钟
BCP and DRP: Full Interruption Testing6分钟
18 个阅读材料
Forensic Investigation: Crime Scene10分钟
Forensic Investigation: General Guidelines10分钟
Forensic Investigation: Hash Algorithms10分钟
BCP and DRP: Emergency Response10分钟
BCP and DRP: Comparing BCP and DRP10分钟
BCP and DRP: Business Impact Analysis10分钟
BCP and DRP: Recovery Time Objective10分钟
BCP and DRP: BIA10分钟
BCP and DRP: Business Continuity Activity10分钟
BCP and DRP: Disaster Recovery Planning10分钟
BCP and DRP: Related Documents10分钟
BCP and DRP: Multiple Processing Sites10分钟
BCP and DRP: Backup and Redundancy Implementation10分钟
BCP and DRP: Off-Site Storage10分钟
BCP and DRP: RAID Levels10分钟
BCP and DRP: RAID Levels10分钟
BCP and DRP: Testing and Drills10分钟
BCP and DRP: Full Interruption Testing10分钟
1 个练习
Quiz 520分钟
6
完成时间为 2 小时

Case Study

This assignment is based on a case study that will require the student to put into practice the knowledge they have gained through the course. It requires the basic understanding of the topics and the ability to relate those topics to the real world. The objective of review is to determine whether the student has understood the concepts and has performed the necessary analysis to ensure a complete and thorough answer....
1 个测验
7
完成时间为 1 小时

Exam

...
1 个阅读材料, 1 个测验
1 个阅读材料
SSCP Exam Information10分钟
1 个练习
End-of-Course Exam30分钟
4.9
4 个审阅Chevron Right

热门审阅

创建者 AJan 16th 2019

this was the best of all the courses that i have gone through i think i might say that now i can be able to detect incidence and recovery by now

创建者 AAMar 27th 2019

Course was really helpful for all the security professionals.

讲师

Avatar

(ISC)² Education & Training

Education & Training

关于 (ISC)²

(ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. www.isc2.org ...

关于 (ISC)² Systems Security Certified Practitioner (SSCP) 专项课程

Pursue better IT security job opportunities and prove knowledge with confidence. The SSCP Professional Training Certificate shows employers you have the IT security foundation to defend against cyber attacks – and puts you on a clear path to earning SSCP certification. Learn on your own schedule with 120-day access to content aligned with the latest (ISC)2 SSCP exam domains. We’re offering the complete online self-paced program for only $1,000 – a $200 savings when you get all domains bundled together. 3 Steps to Career Advancement 1. Register for the course 2. Gain access for 120 days 3. Register and sit for the SSCP certification exam Upon completing the SSCP Professional Certificate, you will: 1. Complete six courses of preparing you to sit for the Systems Security Certified Practitioner (SSCP) certification exam as outlined below. Course 1 - Access Controls Course 2 - Security Operations and Administration Course 3 - Risk Identification, Monitoring, and Analysis/Incident Response and Recovery Course 4 - Cryptography Course 5 - Network and Communication Security Course 6 - Systems and Application Security 2. Receive a certificate of program completion. 3. Understand how to implement, monitor and administer an organization’s IT infrastructure in accordance with security policies and procedures that ensure data confidentiality, integrity and availability....
(ISC)² Systems Security Certified Practitioner (SSCP)

常见问题

  • 是的,您可以在注册之前预览第一个视频和查看授课大纲。您必须购买课程,才能访问预览不包括的内容。

  • 如果您决定在班次开始日期之前注册课程,那么您将可以访问课程的所有课程视频和阅读材料。班次开始之后,您便可以提交作业。

  • 在您注册且班次开课之后,您将可以访问所有视频和其他资源,包括阅读材料内容和课程论坛。您将能够查看和提交练习作业,并完成所需的评分作业以获得成绩和课程证书。

  • 如果您成功完成课程,您的电子课程证书将添加到您的成就页中,您可以通过该页打印您的课程证书或将其添加到您的领英档案中。

  • 该课程是 Coursera 上提供的为数不多的课程之一,目前只对已购买课程或已获得助学金的学生开放。

  • The course schedule contains approximately 21 hours of content material covering lectures, reading materials, a case study, and quizzes broken up over the course of 7 weeks

还有其他问题吗?请访问 学生帮助中心