1. Preparation for Novice Day ° The "Cyber" Elements
° Client side elements & Security
° Servers elements & Security
° Network elements & Security
° Wireless elements & Security
° Mobile elements & Security
° Application elements & Security
° Web Application elements & Security
° The International tunnels & space & Security
° The Human element & Security
° How Hackers become Hackers
° The InfoSec Team
° Information Security Administrator - ISA
° Information Systems Security Integrator - ISSI
° Information Security Systems Engineer - ISSE
° Chief Information Security Officer - CISO
° Information Security Auditor – ISA
° Specialists (SIEM/SOC, Penetration, Forensics, App-Sec)
° The Israeli InfoSecAuthorities
° NISA
° MOD
° IDF & IAF
° Bank Israel (357)
° Finance Ministry (257)
° Domestic & International InfoSec Laws, Regulations &
Standards
° Domestic Laws: Computers law, Privecy law,
° Domestic Regulations: 357, 257, "Reem", "MOD",
°Domestic & International Standards: ISO 27000, SOX, PCI/DSS,
HIPAA, FSA, CobiT, Basel
° Other Terms & Terminology
° The "Business" Vs. Security Dilemmas 2. Introduction ° How hacking works
° Demos of website hacking
° Demo of a Trojan horse that is in use by cyber
espionage groups
° Demo of a Banking Trojan horse that is used by cyber
criminals
° Demo of two attack Scenarios (End to End):
° Wide infection (Cyber-crime style, Drive by download)
° Targeted attack (Cyber-Espionage style) 3. History (Evolution of Cyber Warfare) ° Real cyber-attacks history
° Cyber Assault on electrical power grid in the USA (2003)
° “Digital Pearl Harbor” in the USA (2007)
° The Estonian Cyber War (2008)
° A massive Russian assault against Georgia (2008)
° North Korea attacks USA and Korea (2009)
° Thestory behind the attacks:
° Operation Aurora (2009)
° Stuxnet (2010)
° HBGary (2011)
° RSA (2011)
Food and Water supply |
|
8. SCADA ° SCADA in General 9. Embedded Systems ° MultiFunction Device (Print/Fax/Scan),
Wireless Routers, TV Box
° Computer, Periferail & Net Devices Internal Hardware 10. The Cyber Attack Process ° TBD 11. Attack Vectors ° Viruses, Worms, Trojans
° Vulnerabilities and Exploit
° Web Application Hacking 12. Attack tools and technology ° TBD 13. Information Security Tools and
Technology ° Security Architecture, Security Layers
° Tools of the trade (FW, AV, IDS, IPS, SIM,
SOC, Secure Mediation Device, One way
link)
° Is it useful against a cyber-warfare dream
team? 14. Forensics tools and technologies ° Tools of the trade
° Honeypots
° Tactics 15. Prevention ° Managing the cyber security perimeter
° Building a cyber-perimeter
° Methodologies 16. Cyber capabilities Worldwide ° USA
° Russia
° China
° North Korea 17. Summery ° Domestic & International Law about Cyber
Warfare
° Information Security & Warfare Studies
Review
° Universities
° Courses and Tracks
° Knowledge Certificates: CEH, HDE,
CISSP, CISM, CISA, CISO
° The right way
° Building Blocks of Cyber Headquarter 5th Day Information Security Expansion ° Hardening
° Systems
° Network
° Mobile
° Application
° Web Application
° Security Tools & Technologies
° Expansion for Chapter 13' above.
° HackingDefinedfor Managers
°Reconnaissance Techniques and Tools
° Penetration Techniques and Tools
° House Keeping Techniques
° Information Security Law, Regulation,
Standards.
° Expansion for Chapter 1' above
° Information Security Management & CISO
Functions
° People Management
°Process Management
° Technologies Management |
