دورة معتمد الأمن السيبراني كاملة - كورس شهادة ISC2 CC

Share

Summary

This comprehensive course covers the Certified in Cybersecurity (ISC2 CC) certification, designed for beginners and students interested in cybersecurity. It delves into the fundamentals of cybersecurity, network principles, common attack methods, and protection strategies. The course explains the five main domains of the certification, covering topics like information security principles, incident response, access controls, network security, and security operations, including cloud computing concepts.

Highlights

Introduction to the Certified in Cybersecurity (ISC2 CC) Course
00:00:00

This section introduces the Certified in Cybersecurity (ISC2 CC) course, designed for students and beginners interested in the cybersecurity field. The course covers fundamental principles, network basics, common attacks, and protection methods across five main domains: information security principles, incident handling and recovery, access controls, network security, and cybersecurity operations, including cloud computing.

How to Obtain the Free Course and Exam Voucher
00:01:32

This part details the process to get a free course and a 100% discount voucher for the Certified in Cybersecurity (ISC2 CC) exam. It includes steps for creating an account on the ISC2 website, enrolling in the free training, and booking the exam using a promotional code. Crucially, it highlights the need for accurate personal information for exam registration and the requirement to attend an accredited test center.

Why This Course is Recommended and Its Requirements
00:18:24

This segment explains the benefits of the ISC2 CC course, emphasizing its relevance for individuals in technology, students, and anyone interested in cybersecurity, regardless of their background. It points out that the certification is from a reputable non-profit organization and is more affordable than other certifications. The primary requirements include basic IT knowledge and a fundamental understanding of English.

Course Domains and Learning Objectives
00:21:56

An overview of the five domains covered in the ISC2 CC certification is provided: Security Principles, Business Continuity & Disaster Recovery Concepts, Access Controls, Network Security, and Security Operations. The learning objectives aim to equip students with the ability to discuss core information security concepts, risk management, security controls, and incident response.

Domain 1: Security Principles - Core Concepts
00:25:12

This module introduces the foundational concepts of information security, particularly the CIA Triad (Confidentiality, Integrity, Availability). It explains data classification, Personally Identifiable Information (PII), and Protected Health Information (PHI). Essential cybersecurity terms like authentication, authorization, non-repudiation, and privacy are also covered, along with a quick quiz to reinforce understanding.

Domain 1: Security Principles - Risk Management
00:37:09

This section delves into risk management, defining key terms such as risk, impact, likelihood, vulnerability, asset, and threat. It explains internal and external threats and the continuous process of risk management. The module also covers qualitative and quantitative risk analysis, and strategies for treating risks: avoidance, acceptance, mitigation, and transfer. Quizzes are included to test comprehension.

Domain 1: Security Principles - Security Controls
00:51:39

This part focuses on security controls, classifying them into physical, technical (logical), and administrative controls. Examples for each type are provided, such as walls for physical, firewalls for technical, and policies for administrative controls. The importance of these controls in maintaining CIA, and their interplay, is discussed. A drag-and-drop exercise helps differentiate between control types.

Domain 1: Security Principles - Governance, Legal, and Ethics
01:02:04

This module covers governance, legal, and ethical considerations. It defines regulations, standards, policies, and procedures, illustrating their hierarchy and purpose. Key compliance regulations like GDPR and HIPAA are mentioned. The ISC2 Code of Ethics, comprising four canons emphasizing public safety, honorable conduct, professional integrity, and continuous skill development, is detailed. A quiz reinforces ethical principles.

Domain 2: Incident Response - Concepts and Goals
01:14:26

This section begins Domain 2, focusing on incident response. It defines various security terms like breach, event, incident, exploit, intrusion, threat, vulnerability, and zero-day attack. The primary goals of incident response are highlighted: protection of life, ensuring safety first, and minimizing damage. The module emphasizes that organizations must be prepared for unforeseen attacks.

Domain 2: Incident Response - Phases and Team Roles
01:21:58

The four main phases of incident response are outlined: preparation, detection, containment, and post-incident activity. Each phase is described in detail, from establishing policies and identifying critical assets to analysis, documentation, and lessons learned. The composition and responsibilities of an incident response team, including IT, security, legal, and communication personnel, are also discussed.

Domain 2: Business Continuity Planning
01:30:50

This module covers Business Continuity Planning (BCP), which focuses on maintaining business operations during and after disruptive events. It explains BCP's importance in addressing cyber-attacks, infrastructure failures, or natural disasters. The BCP team composition and critical elements like communication, procedures (red books), management involvement, and external contact lists are detailed. The Business Impact Analysis (BIA) is also discussed as a tool for prioritizing essential functions.

Domain 2: Disaster Recovery
01:35:50

This section focuses on Disaster Recovery (DR), which involves restoring IT services and infrastructure after a disaster. It contrasts DR with BCP, emphasizing DR's focus on IT assets. Key components of a DR plan, such as executive summaries, departmental plans, technical guides for backup/restore, and checklists for personnel, are explained. The important concepts of Recovery Point Objective (RPO) and Recovery Time Objective (RTO) are also defined and illustrated.

Domain 3: Access Control Concepts
01:43:09

Domain 3 shifts to Access Controls. This module briefly revisits security controls as safeguards and countermeasures. It introduces subjects (users or programs) and objects (files or systems) and how rules govern their interaction. The importance of linking security controls to risk management is stressed. Concepts like defense-in-depth, least privilege, need-to-know, and privileged access management (PAM) are explained to secure access.

Domain 3: Access Control Concepts - Separation of Duties and User Lifecycle
01:52:11

This section continues with access control, detailing separation of duties to prevent single points of failure or fraud. It covers two-person integrity and dual control for critical tasks. The user lifecycle—onboarding (initial access), role change (adjusting permissions), and offboarding (revoking access)—is explained as a structured approach to managing user privileges throughout their tenure.

Domain 3: Physical Access Controls
01:56:17

This module specifically addresses physical access controls, which are tangible measures used for security. It describes various types of physical controls such as fences, gates (classified by strength), bollards, lighting, man traps, and turnstiles, and their role in preventing unauthorized entry and tailgating. The use of CCTV for detection and deterrence, different types of locks, and security guards are also covered. Modern access methods like magnetic stripe, proximity, smart, and hybrid cards are discussed.

Domain 3: Physical Access Controls - CPTED
02:04:47

This segment introduces Crime Prevention Through Environmental Design (CPTED), an architectural approach aiming to reduce crime by influencing human behavior through environmental design. This includes guiding traffic flow, maximizing visibility, and strategic placement of barriers.

Domain 3: Technical Access Controls - Types of Controls
02:05:40

This module explores technical (logical) access controls, which are electronic methods to restrict access to systems and data. It categorizes controls into preventive, detective, corrective, recovery, deterrent, and compensatory. Technical controls aim to prevent unauthorized access to digital assets. The concept of federated identity, allowing single sign-on across multiple systems, is introduced.

Domain 3: Technical Access Controls - Access Control Models
02:08:42

Various technical access control models are discussed: Discretionary Access Control (DAC), where owners manage permissions; Mandatory Access Control (MAC), enforced by a system administrator using clearance and labels; Role-Based Access Control (RBAC), granting permissions based on job roles; Rule-Based Access Control, driven by predefined rules; and Attribute-Based Access Control (ABAC), which uses multiple attributes for dynamic access decisions. Administrative access controls like job rotation, mandatory vacations, NDAs, and background checks are also briefly covered.

Domain 4: Network Security - Fundamentals and Devices
02:15:37

Domain 4 begins with Network Security. This module introduces network fundamentals: LANs and WANs. Key network devices like hubs, switches, routers, firewalls, and servers are explained in terms of their functions and security implications. The concepts of MAC addresses and IP addresses as unique identifiers, including the distinction between public and private IPs and the use of Network Address Translation (NAT), are detailed. The increasing security challenges posed by wireless networks are also mentioned.

Domain 4: Network Security - OSI and TCP/IP Models, IP Addressing
02:22:20

This part explains how network components communicate using layered models. The OSI model (7 layers) and the TCP/IP model (4 layers) are compared, outlining the distinct functions of each layer in data transmission, encapsulation, and decapsulation. IPv4 and IPv6 addressing are discussed, highlighting IPv6's expanded address space, support for IPsec, and Quality of Service (QoS). The concept of loopback addresses for troubleshooting is introduced for both IPv4 and IPv6.

Domain 4: Network Security - Network Attacks and Ports
02:38:15

This module coves various network attacks, categorized into active (modifying data) and passive (monitoring data) attacks. Specific active attacks discussed include spoofing, Denial of Service (DoS)/Distributed DoS (DDoS), fragmentation, oversized packet attacks, and man-in-the-middle attacks. Phishing and spear phishing are also covered. The module explains logical ports, their types (well-known, registered, private), and the difference between secure and insecure ports (e.g., FTP vs. SFTP, Telnet vs. SSH, HTTP vs. HTTPS, DNS vs. DoT/DoH).

Domain 4: Network Security - Malware and Advanced Threats
02:58:08

This section differentiates between common malware types: viruses, worms, and Trojans. It introduces Advanced Persistent Threats (APTs), which are complex, long-term attacks often backed by nation-states or sophisticated groups. Ransomware attacks, where data is encrypted and a ransom demanded, are also detailed, with examples like WannaCry.

Domain 4: Network Security - Protection Strategies and Tools
03:01:00

This module discusses strategies for protecting networks, emphasizing 'defense in depth' through measures like system hardening. It covers security solutions and tools such as Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), distinguishing their roles (detection vs. prevention). Security Information and Event Management (SIEM) for log collection and analysis, anti-malware, and network scanners (e.g., Nmap) are also explained. Different types of firewalls, including traditional, next-generation, and firewall-as-a-service, are covered.

Domain 4: Data Centers and Cloud Computing
03:10:20

This section focuses on data centers and cloud computing. It defines data centers and classifies them into on-premise, cloud, and hybrid types. Key components of a physical data center, such as racks, UPS, generators, man traps, fire suppression, CCTV, and HVAC systems, are explained. The module also discusses agreements like MOUs, MOAs, and SLAs. Cloud computing characteristics are introduced, including regions and availability zones, as well as service models like Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). Cloud deployment models (public, private, hybrid, community) and Managed Service Providers (MSPs) are also covered.

Domain 4: Cloud and Network Security Solutions
03:26:38

This part details security solutions for cloud and general networks. It explains network segmentation and microsegmentation for isolating network areas. Demilitarized Zones (DMZs) are discussed for hosting public-facing services securely. Virtual Local Area Networks (VLANs) for logical network segmentation, and Zero Trust security, are also covered. Network Access Control (NAC) for authenticating devices before network access, and Virtual Private Networks (VPNs) for secure remote connections, are presented, highlighting the importance of IPsec for VPN encryption.

Domain 5: Security Operations - Data Lifecycle and Protection
03:32:00

Domain 5 covers Security Operations. This module starts by outlining the data lifecycle: creation, storage, usage, sharing, archiving, and destruction. It emphasizes data classification to determine protection levels based on sensitivity. Data retention policies, which dictate how long data should be kept for legal or operational reasons, are discussed. Data destruction methods, including clearing, purging (degaussing), and physical destruction, are explained to prevent remnant data recovery.

Domain 5: Security Operations - Logging, Monitoring, and Cryptography Basics
03:38:54

This section covers logging and monitoring using SIEM systems to track events and detect anomalies (ingress/egress monitoring). The fundamentals of cryptography are introduced, distinguishing between plaintext, ciphertext, encryption, and decryption. The importance of cryptography in upholding confidentiality and integrity, and the field of cryptanalysis for breaking encryption, are discussed.

Domain 5: Security Operations - Symmetric and Asymmetric Cryptography
03:43:08

This module explains the two main types of cryptography: symmetric (using a single key for encryption and decryption) and asymmetric (using a public and private key pair). Symmetric encryption's speed and key distribution challenges are covered, along with classical and modern techniques. Asymmetric encryption's use with Public Key Infrastructure (PKI) for key management, and its application in confidentiality and authentication, are detailed, noting its computational intensity. The benefits of encryption for confidentiality, integrity, and authentication are highlighted.

Domain 5: Security Operations - Hashing and Digital Signatures
03:50:50

This section explains hashing functions, which convert data into a fixed-size output (hash value) irreversibly, ensuring data integrity. The difference between encryption and hashing is clarified. Digital signatures, combining hashing and asymmetric encryption, are described as a method to verify the sender's identity and ensure message integrity. The use of hashing with 'salting' to secure passwords against common attacks like brute-force and rainbow table attacks is also detailed.

Domain 5: Security Operations - System Hardening and Configuration Management
03:57:33

This module covers system hardening techniques to reduce vulnerabilities, such as removing unnecessary services, applying updates, and using strong passwords with multi-factor authentication. Configuration management, which formally controls changes to systems and baselines, is also discussed. This involves identification, baseline definition, change control processes, and verification/auditing to ensure security and operational stability. The importance of an updated inventory for all assets is stressed.

Domain 5: Security Operations - Organizational Policies and Security Awareness
04:02:59

This final module discusses key organizational policies: data handling/protection policies (classification, access control, monitoring), password policies (complexity guidelines, enforcement), acceptable use policies (defining permitted activities), and Bring Your Own Device (BYOD) policies (managing personal devices for work, often with MDM solutions). Privacy policies for handling PII and ePHI are also covered. Change management processes are revisited to ensure structured and secure modifications. The module concludes with the crucial role of security awareness training for employees to mitigate human-related risks like social engineering (e.g., phishing, baiting, tailgating), categorized into awareness, training, and education programs.

Course Conclusion and Resources
04:11:49

The course concludes with a recap and an announcement of available resources, including a link to over 700 practice questions on Udemy to help with exam preparation. The instructor invites questions and offers contact information via social media, hoping the course was beneficial to all participants.

Recently Summarized Articles

Loading...