0% found this document useful (0 votes)

66 views13 pages

Understanding Cybersecurity

Uploaded by

Nandini Sonekar

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

66 views13 pages

Understanding Cybersecurity

Uploaded by

Nandini Sonekar

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 13

UNDERSTANDING

CYBERSECURITY
An Overview of Domains and Tools
Introduction to Cybersecurity

■ Cybersecurity is the practice of protecting systems, networks, and programs from digital
attacks.
■ Importance:
- Prevents data breaches
- Protects sensitive information
- Ensures business continuity
- Maintains privacy
Cybersecurity Domains

1. Network Security
2. Information Security
3. Application Security
4. Endpoint Security
5. Cloud Security
6. Identity and Access Management (IAM)
7. Security Operations
8. Incident Response
Domains Of
Cybersecurity
And Tools Used
For Them
Network Security

■ Definition: Measures taken to protect the integrity, confidentiality, and accessibility of

networks.
■ Tools:
Cis, Palo Alto Networks Next-Generation Firewall, Fortinet FortiGate
1. Firewalls -
2. Intrusion Detection Systems (IDS)- Snort, suricata, Solar winds security manager
3. Intrusion Prevention Systems (IPS)- McAfee network secueity platform, IBM ips, Check
point IPS
4. Virtual Private Networks (VPN)- Nord VPN, Cisco AnyConnect, OpenVPN
5. Network Access Control (NAC)- Cisco identity service engine, Aruba clearPass,
ForeScout Counter ACT
Information Security

■ Definition: Protection of information and data from unauthorized access, disclosure, alteration, and
destruction.
■ Tools:
1. Data Encryption Software- Vera Crypt, BitLocker, AxCrypt
2. Data Loss Prevention (DLP) Systems- Symantec Data Loss Prevention, McAfee Total Protection for Data
Loss Prevention, Digital Guardian
3. Identity Management Software- Okta Identity Management, Microsoft Azure Active Directory, IBM
Security Identity Governance and Intelligence
4. Security Information and Event Management (SIEM) Systems- Splunk Enterprise Security, IBM qRadar,
LogRhythm NextGen SIEM
5. Backup and Recovery Tools- Veeam Backup & Replication, Acronis Cyber Backup, Commvault Backup
& Recovery
Application Security

■ Definition: Measures to protect applications from threats and vulnerabilities throughout their
lifecycle.
■ Tools:
1. Web Application Firewalls (WAF)- Imperva WAF, Akamai Kona Site Defender, AWS WAF
2. Static Application Security Testing (SAST)- Checkmarx, Veracode, Fortify Static Code Analyzer
3. Dynamic Application Security Testing (DAST)- OWASP ZAP (Zed Attack Proxy), Burp Suite,
Acunetix
4. Runtime Application Self-Protection (RASP)- Contrast Security, Imperva RASP, Signal
Sciences RASP
5. Vulnerability Scanners- Nessus, QualysGuard, OpenVAS
Endpoint Security

■ Definition: Protection of endpoint devices like desktops, laptops, and mobile devices from
cyber threats.
■ Tools:
1. Antivirus Software- Norton Antivirus, McAfee Total Protection, Bitdefender Antivirus
2. Endpoint Detection and Response (EDR)- CrowdStrike Falcon, Carbon Black, SentinelOne
3. Mobile Device Management (MDM)- VMware AirWatch, Microsoft Intune, MobileIron
4. Endpoint Encryption- Symantec Endpoint Encryption, McAfee Complete Data Protection,
Sophos SafeGuard
5. Patch Management Tools- SolarWinds Patch Manager, Ivanti Patch for Windows,
ManageEngine Patch Manager Plus
Cloud Security

■ Definition: Protection of data, applications, and services that operate in the cloud.
■ Tools:
1. Cloud Access Security Brokers (CASB)- Microsoft Cloud App Security, McAfee
MVISION Cloud, NetsCloud
2. Cloud Security Posture Management (CSPM)- Prisma Cloud, AWS Security Hub,
Microsoft Azure Security Center
3. Cloud Workload Protection Platforms (CWPP)- Trend Micro Deep Security, Symantec
Cloud Workload Protection, Aqua Security
4. Identity and Access Management (IAM)- Okta, Ping Identity, OneLogin
5. Encryption Tools- Thales CipherTrust, IBM Guardium, Boxcryptor
Identity and Access Management (IAM)

■ Definition: Framework of policies and technologies to ensure that the right individuals
access the right resources.
■ Tools:
1. Single Sign-On (SSO)- OneLogin SSO, Ping Identity SSO, Okta SSO
2. Multi-Factor Authentication (MFA)- Duo security, Google Authenticator, Authy
3. Privileged Access Management (PAM)- CyberArk, BeyondTrust, Thycotic Secret Server
4. Identity Governance and Administration (IGA)- SailPoint IdentityIQ, RSA Identity
Governance and Lifecycle, Oracle Identity Governance
5. Biometric Authentication Systems- Face ID(Apple), Windows Hello(Microsoft), Bio Key
Security Operations

■ Definition: Ongoing activities to monitor and protect organizational assets.

■ Tools:
1. Security Information and Event Management (SIEM)- Splunk, ArkSight, LogRythym
2. Threat Intelligence Platforms- Recorded Future, ThreatConnect, Anomali
3. Security Orchestration, Automation, and Response (SOAR)- Palo Alto Networks
Cortex XSOAR, IBM Resilent, Siemplify
4. Log Management Tools - SolarWinds Log & Event Manager, GrayLog, LogDNA
5. Network Traffic Analysis (NTA) Tools- ExtraHop, DarkTrace, Vectra AI
Incident Response

■ Definition: Methodologies for detecting, responding to, and recovering from

cybersecurity incidents.
■ Tools:
1. Incident Response Platforms- IBM Resilient, D3 Security, Palo Alto Networks Cortex
XSOAR
2. Forensic Tools- EnCase, FTK (Forensic Toolkit), Slueth Kit
3. Threat Hunting Tools- CrowdStrike Falcon, Carbon Black Response, RSA Witness
4. Communication Tools- Slack, Teams, Zoom
5. Case Management Systems- JIRA, ServiceNow, RemedyForce

Electronic - Evidence - Lecture - Atty. Ed Lim
100% (1)
Electronic - Evidence - Lecture - Atty. Ed Lim
37 pages
Cortex XDR Prevent Admin
100% (1)
Cortex XDR Prevent Admin
480 pages
Automatix
No ratings yet
Automatix
4 pages
Alert Analysis L1 External
No ratings yet
Alert Analysis L1 External
7 pages
Cortex XDR: Safeguard Your Entire Organization With The Industry's First Extended Detection and Response Platform
No ratings yet
Cortex XDR: Safeguard Your Entire Organization With The Industry's First Extended Detection and Response Platform
8 pages
Dell Secureworks - Accelerating Incident Response Mssirti
No ratings yet
Dell Secureworks - Accelerating Incident Response Mssirti
13 pages
Bluecoat Manual
100% (1)
Bluecoat Manual
990 pages
Checkpoint R65 Smart Center Admin Guide
100% (1)
Checkpoint R65 Smart Center Admin Guide
362 pages
CP R77 CLI ReferenceGuide
No ratings yet
CP R77 CLI ReferenceGuide
131 pages
Ai & ML Lab Manual (As Per 2018 Scheme)
No ratings yet
Ai & ML Lab Manual (As Per 2018 Scheme)
42 pages
Invitation From CFCST
100% (1)
Invitation From CFCST
1 page
CP R80.30 GA Installation and Upgrade Guide PDF
No ratings yet
CP R80.30 GA Installation and Upgrade Guide PDF
636 pages
7 Palo+Alto++Cortex+XDR+ +glenn
No ratings yet
7 Palo+Alto++Cortex+XDR+ +glenn
35 pages
PowerBrokerTroubleshooting Guide
No ratings yet
PowerBrokerTroubleshooting Guide
64 pages
Splunk AdminES - Slides
No ratings yet
Splunk AdminES - Slides
385 pages
Checkpoint R65 CLI Reference Guide PDF
No ratings yet
Checkpoint R65 CLI Reference Guide PDF
184 pages
Checkpoint R65 Secure Platform Secure Platform Pro Admin Guide
100% (2)
Checkpoint R65 Secure Platform Secure Platform Pro Admin Guide
148 pages
CP R80.20 RemoteAccessVPN AdminGuide
No ratings yet
CP R80.20 RemoteAccessVPN AdminGuide
161 pages
CP R77.20 EndpointSecurity AdminGuide
No ratings yet
CP R77.20 EndpointSecurity AdminGuide
168 pages
Checkpoint R77 Gaia Administration Guide
No ratings yet
Checkpoint R77 Gaia Administration Guide
234 pages
Cortex XDR Pro Admin
No ratings yet
Cortex XDR Pro Admin
326 pages
Weekly Status Report - Template
0% (1)
Weekly Status Report - Template
4 pages
CP R77.30.01 EndpointSecurity AdminGuide PDF
No ratings yet
CP R77.30.01 EndpointSecurity AdminGuide PDF
241 pages
CP R80.20.M1 CLI ReferenceGuide
No ratings yet
CP R80.20.M1 CLI ReferenceGuide
227 pages
CP R76 Security Management Tutorial
No ratings yet
CP R76 Security Management Tutorial
158 pages
BCC Proxy Admin
No ratings yet
BCC Proxy Admin
356 pages
CP R80.10 LoggingAndMonitoring AdminGuide
No ratings yet
CP R80.10 LoggingAndMonitoring AdminGuide
132 pages
How To Install Openshift On A Laptop or Desktop
100% (1)
How To Install Openshift On A Laptop or Desktop
7 pages
Idps Siem PDF
No ratings yet
Idps Siem PDF
33 pages
CheckPoint R65 VPN AdminGuide
No ratings yet
CheckPoint R65 VPN AdminGuide
670 pages
SandBlast Network PTK Training Labs-V7.12 CloudShare
No ratings yet
SandBlast Network PTK Training Labs-V7.12 CloudShare
60 pages
Enterprise Security Script: Splunk Security Solutions Marketing October 2019
No ratings yet
Enterprise Security Script: Splunk Security Solutions Marketing October 2019
26 pages
Pse Palo Alto
0% (1)
Pse Palo Alto
26 pages
Help Viewer Shortcut Keys: Microsoft Confidential
No ratings yet
Help Viewer Shortcut Keys: Microsoft Confidential
6 pages
PRES PUBLIC v2 QualysGuard - Vulnerability - Management
No ratings yet
PRES PUBLIC v2 QualysGuard - Vulnerability - Management
24 pages
Bi Ps Third Party Integration
No ratings yet
Bi Ps Third Party Integration
71 pages
Oct 2020 Spotlight PDF
No ratings yet
Oct 2020 Spotlight PDF
163 pages
Operating System PDF
No ratings yet
Operating System PDF
43 pages
Scribd-Caia Level 1
0% (3)
Scribd-Caia Level 1
3 pages
Corelight's Introductory Guide To Threat Hunting With Zeek (Bro) Logs
No ratings yet
Corelight's Introductory Guide To Threat Hunting With Zeek (Bro) Logs
6 pages
The Art of Recognizing and Surviving SOC Burnout
No ratings yet
The Art of Recognizing and Surviving SOC Burnout
29 pages
XDR With SIEM Integration
No ratings yet
XDR With SIEM Integration
36 pages
AnsibleAutomates AnsibleForSecurityAutomation
No ratings yet
AnsibleAutomates AnsibleForSecurityAutomation
38 pages
Windows Server 2008 End of Support Brochure PDF
No ratings yet
Windows Server 2008 End of Support Brochure PDF
2 pages
The Absolute Guide To Siem
No ratings yet
The Absolute Guide To Siem
13 pages
Top Security Orchestration Use Cases
No ratings yet
Top Security Orchestration Use Cases
17 pages
Samsung Galaxy s20 Fe 5g Manual Optimized
No ratings yet
Samsung Galaxy s20 Fe 5g Manual Optimized
174 pages
Prisma Cloud - Threat Detection - Assessment
No ratings yet
Prisma Cloud - Threat Detection - Assessment
6 pages
Ase 2 Paloaltonetworks
No ratings yet
Ase 2 Paloaltonetworks
5 pages
17 Soar
No ratings yet
17 Soar
70 pages
HP TippingPoint NGIPS Customer Presentation
No ratings yet
HP TippingPoint NGIPS Customer Presentation
22 pages
Micro Segmentation Use Case Brief
No ratings yet
Micro Segmentation Use Case Brief
5 pages
Prospekt DG4000
No ratings yet
Prospekt DG4000
4 pages
Emerging Technology Analysis - SOAR
No ratings yet
Emerging Technology Analysis - SOAR
11 pages
Assessment Task 2 BSBMGT407
No ratings yet
Assessment Task 2 BSBMGT407
27 pages
Create Factory Calendar
No ratings yet
Create Factory Calendar
6 pages
BeyondTrust - Password Safe - Linux Tools Use Case - V1.0
No ratings yet
BeyondTrust - Password Safe - Linux Tools Use Case - V1.0
13 pages
Arcsight Logger - Commonly Used Event Fields: Example Queries
No ratings yet
Arcsight Logger - Commonly Used Event Fields: Example Queries
2 pages
Elective Midterm Handouts
No ratings yet
Elective Midterm Handouts
6 pages
Information Synchronized in An HA Pair Palo Alto Networks Live
No ratings yet
Information Synchronized in An HA Pair Palo Alto Networks Live
2 pages
Optimizing Security Operations With Palo Alto Networks Cortex XSOAR
No ratings yet
Optimizing Security Operations With Palo Alto Networks Cortex XSOAR
17 pages
A Guide To Endpoint Privilege Management
No ratings yet
A Guide To Endpoint Privilege Management
22 pages
Intrusion DPS
No ratings yet
Intrusion DPS
26 pages
Network Security Basic - Firewall
No ratings yet
Network Security Basic - Firewall
7 pages
Friends Forever
No ratings yet
Friends Forever
2 pages
Input and Output Devices: Government College University Lahore
No ratings yet
Input and Output Devices: Government College University Lahore
18 pages
Cybersecurity Presentation
No ratings yet
Cybersecurity Presentation
13 pages
PaltoAlto Cortex Guide Automating-Malware-Investigations 122123
No ratings yet
PaltoAlto Cortex Guide Automating-Malware-Investigations 122123
10 pages
Simulating, Detecting, and Responding To Log4Shell With Splunk - Splunk
No ratings yet
Simulating, Detecting, and Responding To Log4Shell With Splunk - Splunk
1 page
Face Mask Detection
No ratings yet
Face Mask Detection
44 pages
Flame Sensor Report
No ratings yet
Flame Sensor Report
69 pages
Windows Siem Use Cases With Scenario Examples
No ratings yet
Windows Siem Use Cases With Scenario Examples
86 pages
Hamza ELGADI CV
No ratings yet
Hamza ELGADI CV
1 page
Sra Virtual Appliance Setup
No ratings yet
Sra Virtual Appliance Setup
50 pages
Mclab Exp1
No ratings yet
Mclab Exp1
5 pages
Cyber Security Notes
No ratings yet
Cyber Security Notes
4 pages
Gursimran Kaur
No ratings yet
Gursimran Kaur
8 pages
Dsap Lab Report 077bei045
No ratings yet
Dsap Lab Report 077bei045
27 pages
2020.11.28.402297v2.full - Using Pumas AI
No ratings yet
2020.11.28.402297v2.full - Using Pumas AI
35 pages
Data Structures and Algorithms (Using C++)
No ratings yet
Data Structures and Algorithms (Using C++)
112 pages
Splunk SOAR Guided Automation With Use Cases Examples
No ratings yet
Splunk SOAR Guided Automation With Use Cases Examples
65 pages
Netgear Cm1000v2 User - Manual Um - en
No ratings yet
Netgear Cm1000v2 User - Manual Um - en
28 pages
Crowdstrike SIEM Connector V1
No ratings yet
Crowdstrike SIEM Connector V1
17 pages
SOC Tools
No ratings yet
SOC Tools
6 pages
Python
No ratings yet
Python
2 pages
UAE Regulated Solutions & Company Verticals
No ratings yet
UAE Regulated Solutions & Company Verticals
53 pages
تفعيل الانترنت 4جي - خدماتل
No ratings yet
تفعيل الانترنت 4جي - خدماتل
2 pages
Data Loss Prevention PDF
No ratings yet
Data Loss Prevention PDF
44 pages
4 Year BSC Honours Majorin Mathematics
No ratings yet
4 Year BSC Honours Majorin Mathematics
8 pages
App Service Plans
No ratings yet
App Service Plans
6 pages

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

Understanding Cybersecurity

Uploaded by

Understanding Cybersecurity

Uploaded by

UNDERSTANDING

■ Definition: Measures taken to protect the integrity, confidentiality, and accessibility of

■ Definition: Ongoing activities to monitor and protect organizational assets.

■ Definition: Methodologies for detecting, responding to, and recovering from

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.