Informações sobre o curso
5.0
4 classificações
1 avaliações
100% online

100% online

Comece imediatamente e aprenda em seu próprio cronograma.
Prazos flexíveis

Prazos flexíveis

Redefinir os prazos de acordo com sua programação.
Nível iniciante

Nível iniciante

Horas para completar

Aprox. 23 horas para completar

Sugerido: 6 hours/week...
Idiomas disponíveis

Inglês

Legendas: Inglês
100% online

100% online

Comece imediatamente e aprenda em seu próprio cronograma.
Prazos flexíveis

Prazos flexíveis

Redefinir os prazos de acordo com sua programação.
Nível iniciante

Nível iniciante

Horas para completar

Aprox. 23 horas para completar

Sugerido: 6 hours/week...
Idiomas disponíveis

Inglês

Legendas: Inglês

Programa - O que você aprenderá com este curso

Semana
1
Horas para completar
4 horas para concluir

Understand the Risk Management Process

Module Topic: Risk Visibility and Reporting, Risk management Concepts, Risk Assessment, Risk Treatment, Audit Findings. In Risk visibility and Reporting, you will learn about risk register, creating a risk register, risk register, and risk management steps. In Risk Management Concepts, you will learn about, key terms, and generic risk model with key factors - NIST SP 800-30 R1. In risk Assessment, you will learn about NIST SP 800- 30 R1 risk assessment methodology, Step 1. prepare for the assessment, Step 2. conduct the assessment, Step 2a. identify threat sources, step 2b. identify potential threat events, step 2c. identify vulnerabilities and predisposing conditions, step 2d. determine likelihood, step 2e. determine impact, step 2f. risk determination, risk level matrix, risk levels, step 3. communicating and sharing risk assessment information, step 4. maintaining the risk assessment, and risk assessment activity. In Risk Treatment, you will learn about, risk mitigation, example control: passwords, control selection, residual risk, risk transference, risk avoidance, and risk acceptance. In audit Findings, you will learn about auditors, types of audits, audit methodologies, auditor responsibilities, audit scope, documentation, and response to audit. ...
Reading
14 vídeos (total de (Total 84 mín.) min), 14 leituras, 1 teste
Video14 videos
Risk Management Process: Creating a Risk Register7min
Risk Management Process: Risk Register Risk Management Steps8min
Risk Management Process: Key Terms5min
Risk Management Process: Key Terms6min
Risk Management Process: Risk Assessment3min
Risk Management Process: Preparation Steps7min
Risk Management Process: Step 2b4min
Risk Management Process: Quantitative Analysis8min
Risk Management Process: Qualitative Analysis5min
Risk Management Process: Step 33min
Risk Management Process: Risk Treatment5min
Risk Management Process: Risk Avoidance5min
Risk Management Process: Type of Audits7min
Reading14 leituras
Risk Management Process: Risk Visibility and Reporting10min
Risk Management Process: Creating a Risk Register10min
Risk Management Process: Risk Register Risk Management Steps10min
Risk Management Process: Key Terms10min
Risk Management Process: Key Terms10min
Risk Management Process: Risk Assessment10min
Risk Management Process: Preparation Steps10min
Risk Management Process: Step 2b10min
Risk Management Process: Quantitative Analysis10min
Risk Management Process: Qualitative Analysis10min
Risk Management Process: Step 310min
Risk Management Process: Risk Treatment10min
Risk Management Process: Risk Avoidance10min
Risk Management Process: Type of Audits10min
Quiz1 exercício prático
Quiz 120min
Semana
2
Horas para completar
3 horas para concluir

Perform Security Assessment Activities

Module Topics: Participate in Security and Test Results, Penetration Testing. In Participate in Security and Test Results, you will learn about vulnerability scanning and analysis, vulnerability testing software categories, vulnerability testing qualities, potential problems, host scanning, host security considerations, traffic types, security gateway types, wireless networking testing, potential security issues, searching for rogue access points, locking down the enterprise, wireless tools, war dialing, and war driving. In Penetration Testing you will learn about penetration testing modes, white box / hat, gray box / hat, black box / hat, phase 1: preparation, reporting, phase 2: reconnaissance and network mapping techniques, reconnaissance, social engineering and low-tech reconnaissance, whois attacks, DNS zone transfers, network mapping, network mapping techniques, firewalking, basic built-in tools, phase 3: information evaluation and risk analysis, phase 4: active penetration, phase 5: analysis and reporting, penetration testing high-level steps....
Reading
11 vídeos (total de (Total 73 mín.) min), 11 leituras, 1 teste
Video11 videos
Security Assessment Activities: Potential Problems6min
Assessment Activities: Security Gateway Types5min
Security Assessment Activities: Potential Security Issues6min
Security Assessment Activities: Penetration Testing6min
Security Assessment Activities: White Box / Hat8min
Security Assessment Activities: Reconnaissance4min
Security Assessment Activities: DNS Zone Transfers7min
Security Assessment Activities: Network Mapping Techniques9min
Security Assessment Activities: Firewalking6min
Security Assessment Activities: Active Penetration6min
Reading11 leituras
Security Assessment Activities: Participate in Security and Test Results10min
Security Assessment Activities: Potential Problems10min
Assessment Activities: Security Gateway Types10min
Security Assessment Activities: Potential Security Issues10min
Security Assessment Activities: Penetration Testing10min
Security Assessment Activities: White Box / Hat10min
Security Assessment Activities: Reconnaissance10min
Security Assessment Activities: DNS Zone Transfers10min
Security Assessment Activities: Network Mapping Techniques10min
Security Assessment Activities: Firewalking10min
Security Assessment Activities: Active Penetration10min
Quiz1 exercício prático
Quiz 220min
Semana
3
Horas para completar
4 horas para concluir

Operate and Maintain Monitoring Systems & Analyze and Report Monitoring Results

Module Topics: Events of Interest, Logging, source Systems, Security Analytics, metrics, and Trends, Visualization, Event Data Analysis, Communication of Findings. In Events of Interest you will learn about, monitoring terminology, Intrusion Detection System (IDS)/Intrusion Prevention System (IPS), comparing IDS and IPS, types of IDS/IPS devices, deploying HIDS and NIDS, implementation issues for monitoring, monitoring control, other considerations, sample questions to consider, collecting data for incident response, monitoring response techniques, attackers, attacker motivations, intrusions, events, types of monitoring, and file integrity checkers, continuous/compliance monitoring. In Logging, you will learn about reviewing host logs, reviewing incident logs, log anomalies, log management, clipping levels, filtering, log consolidation, log retention, centralized logging (syslog and log aggregation), syslog, distributed log collectors, hosted logging services, configuring event sources (s-flow, NetFlow, sniffer), Cosco NetFlow, What is an IP Flow, IP packet attributes, understanding network behavior, how to access the data produced by NetFlow, How does the router or switch determine which flows to export to the NetFlow collector server, format of the export data, sFlow, event correlation systems (security, information, and event management (SIEM)), SIEM functions, compliance, enhanced network security and improved IT/security operations, and full packet capture. In Source System, you will learn about comprehensive application, middleware, OS, and infrastructure monitoring, hyper capabilities, and operations manager. Analyze and Report Monitoring: In Security Analytics, Metrics, and Trends, you will learn about security baseline, network security baseline, metrics and analysis (MA), systems security engineering capability maturity model (SSE-CMM), and potential metrics. In visualization topic, you will learn about data visualization tools. In Event Data Analysis, you will learn about logs, log management, log management recommendations, and Potential uses of server log data. In Communication of Findings, you will learn about checklist for report writers and reviewers. ...
Reading
12 vídeos (total de (Total 75 mín.) min), 12 leituras, 1 teste
Video12 videos
Monitoring Systems: IDS/IPS5min
Monitoring Systems: Implementation Issues for Monitoring6min
Maintain Monitoring Systems: Sample Questions6min
Maintain Monitoring Systems: Attacker Motivations7min
Maintain Monitoring Systems: Logging5min
Maintain Monitoring Systems: Log Anomalies5min
Maintain Monitoring Systems: Log Retention6min
Monitoring Systems: Compliance6min
Monitoring Results: Security Baseline6min
Monitoring Results: SSE-CMM6min
Monitoring Results: Potential Uses of Server Log Data6min
Reading12 leituras
Monitoring Systems: Monitoring Terminology10min
Monitoring Systems: IDS/IPS10min
Monitoring Systems: Implementation Issues for Monitoring10min
Maintain Monitoring Systems: Sample Questions10min
Maintain Monitoring Systems: Attacker Motivations10min
Maintain Monitoring Systems: Logging10min
Maintain Monitoring Systems: Log Anomalies10min
Maintain Monitoring Systems: Log Retention10min
Monitoring Systems: Compliance10min
Monitoring Results: Security Baseline10min
Monitoring Results: SSE-CMM10min
Monitoring Results: Potential Uses of Server Log Data10min
Quiz1 exercício prático
Quiz 320min
Semana
4
Horas para completar
4 horas para concluir

Incident Response and Recovery

Module Topics: Preparation, Detection and Analysis, Containment, Eradication, and Recovery, Post-Incident Activity, Implementation of Countermeasures. In Introduction, you will learn about incident response, and basic definitions. In preparation, you will learn about elements of an incident response policy, incident response plan, training, incident response tools, communication planning, communication with law enforcement, media, requirements for effective incident handling, the incident response team, core team areas, centralized and decentralized teams, team structure, team conditions that support success, and other considerations. In Detection and Analysis, you will learn about Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), types of intrusion systems, intrusion detection techniques, false positives and false negatives, anti-malware systems, security information event management (SIEM), Incident analysis, packet sniffers, Inline SSL decryption devices, incident documentation, records, assessing risk, response, containment strategy considerations, Delaying containment, areas of focus, defining an incident, triage, and notification. In Containment, Eradication, and Recovery, you will learn about common containment activities, and eradication. In post-incident activity, you will learn about effective incident response. In implementation of Countermeasures, you will learn about implementation steps. ...
Reading
13 vídeos (total de (Total 77 mín.) min), 13 leituras, 1 teste
Video13 videos
Incident Handling: Preparation6min
Incident Handling: Training6min
Incident Handling: Communication Planning7min
Incident Handling: The Incident Response Team7min
Incident Handling: IDS and IPS4min
Incident Handling: Intrusion Detection Techniques7min
Incident Handling: Anti-Malware Systems2min
Incident Handling: Packet Sniffers6min
Incident Handling: SSL Decryption Devices4min
Incident Handling: Records6min
Incident Handling: Delaying Containment6min
Incident Handling: Containment, Eradication, and Recovery4min
Reading13 leituras
Incident Handling: Incident Response10min
Incident Handling: Preparation10min
Incident Handling: Training10min
Incident Handling: Communication Planning10min
Incident Handling: The Incident Response Team10min
Incident Handling: IDS and IPS10min
Incident Handling: Intrusion Detection Techniques10min
Incident Handling: Anti-Malware Systems10min
Incident Handling: Packet Sniffers10min
Incident Handling: SSL Decryption Devices10min
Incident Handling: Records10min
Incident Handling: Delaying Containment10min
Incident Handling: Containment, Eradication, and Recovery10min
Quiz1 exercício prático
Quiz 420min

Instrutores

Avatar

(ISC)² Education & Training

Education & Training

Sobre (ISC)²

(ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. www.isc2.org ...

Sobre o Programa de cursos integrados (ISC)² Systems Security Certified Practitioner (SSCP)

Pursue better IT security job opportunities and prove knowledge with confidence. The SSCP Professional Training Certificate shows employers you have the IT security foundation to defend against cyber attacks – and puts you on a clear path to earning SSCP certification. Learn on your own schedule with 120-day access to content aligned with the latest (ISC)2 SSCP exam domains. We’re offering the complete online self-paced program for only $1,000 – a $200 savings when you get all domains bundled together. 3 Steps to Career Advancement 1. Register for the course 2. Gain access for 120 days 3. Register and sit for the SSCP certification exam Upon completing the SSCP Professional Certificate, you will: 1. Complete six courses of preparing you to sit for the Systems Security Certified Practitioner (SSCP) certification exam as outlined below. Course 1 - Access Controls Course 2 - Security Operations and Administration Course 3 - Risk Identification, Monitoring, and Analysis/Incident Response and Recovery Course 4 - Cryptography Course 5 - Network and Communication Security Course 6 - Systems and Application Security 2. Receive a certificate of program completion. 3. Understand how to implement, monitor and administer an organization’s IT infrastructure in accordance with security policies and procedures that ensure data confidentiality, integrity and availability....
(ISC)² Systems Security Certified Practitioner (SSCP)

Perguntas Frequentes – FAQ

  • Sim, você pode assistir uma prévia do primeiro vídeo e ver programa do curso antes de se inscrever. Você precisa comprar o curso para ter acesso ao conteúdo não incluído na prévia.

  • Se decidir se inscrever no curso antes da data de início da sessão, terá acesso a todos os vídeos das palestras e leituras do curso. Também poderá enviar tarefas assim que a sessão começar.

  • Uma vez inscrito, e tão logo sua sessão tenha iniciado, você terá acesso a todos os vídeos e outros recursos, incluindo itens de leitura e fórum de discussão do curso. Você poderá ver e enviar tarefas práticas e concluir tarefas com nota atribuída obrigatórias para obter uma nota e um Certificado de Curso.

  • Se você concluir o curso com êxito, seu Certificado de Curso eletrônico será adicionado à sua página de Participações e você poderá imprimi-lo ou adicioná-lo ao seu perfil no LinkedIn.

  • Este é um dos poucos cursos oferecidos na Coursera que está disponível apenas para alunos que pagaram ou tenham recebido auxílio financeiro. Caso tenha interesse em fazer este curso, mas não possa pagar a taxa, o incentivamos a enviar uma solicitação de auxílio financeiro.

  • The course schedule contains approximately 21 hours of content material covering lectures, reading materials, a case study, and quizzes broken up over the course of 7 weeks

Mais dúvidas? Visite o Central de Ajuda ao Aprendiz.