Trending Courses

Vendors

Skip Navigation Links

Overview

This course provides the basic commands for user and server administration as it relates to security. You will need this skill to be able to understand vulnerabilities within your organizations operating systems.You will learn the concepts of endpoint security and patch management. Both of these topics are important to keep systems current to avoid cybersecurity incidents against an organization.Finally, you will learn in-depth skills around cryptography and encryption to understand how these concepts affect software within a company.This course is intended for anyone who wants to gain a basic understanding of cybersecurity. This is the third course in a series to acquire the skills to work in the field as a Cybersecurity Analyst.
img-course-overview.jpg

What You'll Learn

In this course, you will learn to:

  • Define events, attacks, and incidents in the context of cybersecurity
  • Describe the cybersecurity challenges that organizations face that require compliance and regulation
  • Contrast security, privacy, and compliance in the context of cybersecurity
  • Describe the specific checklist of security controls
  • Discuss the two main categories of cybersecurity compliance
  • Explain each step of the typical process for verifying cybersecurity compliance
  • Describe the Computer Fraud and Abuse Act
  • Summarize what the National Institute of Standards and Technology (NIST) does
  • Describe the requirements for privacy and data protection contained in the General Data Protection Regulation (GDPR)
  • Summarize basic aspects of the International Organization for Standardization (ISO) 27001 standard
  • Explain the purpose and benefits of System and Organizational Controls (SOC) reports
  • Contrast SOC 1, SOC 2, and SOC 3 reports
  • Differentiate between Type 1 and Type 2 SOC reports
  • Discuss typical Trust Service Principles used to define a SOC 2 report’s scope
  • Describe the criteria used in a SOC audit
  • Summarize the importance of continuous monitoring between cybersecurity compliance audits
  • Explain why organizations in and outside the U.S. comply with the Health Insurance Portability and Accountability Act (HIPAA)
  • Define covered entity, business associate, and protected health information (PHI) in the context of HIPAA
  • Describe HIPAA’s Privacy Rule and Security Rule
  • Explain the Payment Card Industry Data Security Standard (PCI DSS), including its goals, scope, and audit process
  • Describe some of the PCI DSS’s most unique requirements
  • Describe the Center for Internet Security (CIS) Critical Security Controls®, including control types and implementation groups
  • Define a client in the context of a computer network
  • Discuss essential characteristics of client system administration in the context of cybersecurity
  • Describe common types of endpoint attacks
  • Define endpoint protection
  • Explain key characteristics of endpoint protection
  • Describe unified endpoint management (UEM)
  • Explain what endpoint protection and response (EDR) does
  • Summarize useful features of endpoint protection and response (EDR) applications
  • Discuss important considerations for evaluating an endpoint security solution
  • Manage endpoints using Xcitium OpenEDR
  • Summarize key developments in device management that have made UEM a popular approach to endpoint protection
  • Define patching
  • Explain why patching is essential for protecting against cybersecurity threats
  • Differentiate the four types of Windows updates
  • Explain why patching applications is essential for cybersecurity
  • Summarize the typical patching process that most organizations use
  • Describe patch management best practices
  • Compare and contrast Windows’s two modes: user and kernel
  • Define file system and hierarchical structure
  • Contrast the NTFS and FAT file systems that Windows uses
  • Describe the Windows directory structure
  • Summarize how Windows handles the separation of 32-bit and 64-bit applications
  • Explain how authentication and authorization work in Windows Access Control
  • Define Windows privileged accounts
  • Describe the principle of least privilege and its benefits for network administration
  • Define local user accounts within Windows
  • Describe default local accounts within Windows
  • Discuss security considerations for managing local Windows systems
  • Describe features of the Windows Security app
  • Explain how Active Directory works
  • Describe key features of Active Directory
  • Differentiate the four types of Active Directory accounts
  • Summarize guidelines for restricting and protecting sensitive domain accounts using Active Directory
  • Describe the two types of Active Directory groups
  • Explain scope as it relates to Active Directory groups
  • Summarize what makes Windows Admin Center useful for server management
  • Define Kerberos authentication and describe its benefits for Windows security and compliance
  • Describe server logs in the context of network administration
  • Discuss how to locate and view Windows Server logs
  • Explain why an organization should have a security auditing policy
  • Describe the nine types of Windows security events that administrators can audit
  • Summarize why organizations use Linux
  • Explain what the Linux kernel and shell do
  • Describe Linux’s file system and directory structure
  • Explain what happens at each Linux run level
  • Describe common shell choices within Linux
  • Recall the functions of basic Linux shell commands
  • Explain how to install and set up Samba so that Linux and Windows systems can communicate over a network
  • Explain why organizations use cryptography and encryption
  • Describe the Open Web Application Security Project (OWASP) Top 10 Project and the SANS Institute Top 25 Software Errors
  • Define encryption
  • Contrast symmetric and public key cryptography
  • Define cryptographic terms, including hash functions and digital signatures
  • Describe common cryptography pitfalls and recommended solutions
  • Describe best practices for encrypting data at rest
  • Explain the recommended method for encrypting data in use
  • Describe pitfalls and best practices for encrypting data in transit
  • Explain the purpose of using hashing
  • Discuss common pitfalls of using hashing
  • Describe additional considerations when using hashing
  • Explain how message authentication codes (MACs) work with hashing to ensure integrity
  • List recommended uses for digital signatures
  • Explain how to safeguard encryption keys
  • Describe recommended ways to secure a key encryption key (KEK)
  • Encrypt and decrypt files using ccrypt
  • Describe the OpenPGP protocol
  • Encrypt and decrypt emails using Mailvelope
  • Summarize the impacts of quantum computing on cryptography
  • Set up user and group accounts in Kali Linux
  • Encrypt a file using ccrypt
  • Create an encrypted email using Mailvelope
  • Evaluate your peers’ completion of Linux and encryption tasks using the provided rubric

Who Should Attend

This course is intended for anyone who wants to gain a basic understanding of Security Frameworks, Compliance, endpoint management, encryption or cryptography or as the third course in a series of courses to gain the skills needed as a Jr Cybersecurity analyst.
img-who-should-learn.png

Prerequisites

None

Learning Journey

Coming Soon...

Frequently Asked Questions (FAQs)

  • Why get IBM certified?

    IBM certifications validate your skills and expertise in a wide range of technologies, including hybrid cloud, data & AI, security, IT infrastructure, and business applications.

    These certifications are globally recognized and can help you advance your career, increase your earning potential, and demonstrate your commitment to professional development.

    IBM-certified professionals are in high demand, making them valuable assets to any organization seeking to leverage IBM's innovative solutions.

  • What to expect for the examination?

    IBM offers a variety of certification exams at different levels (Basic, Intermediate, and Advanced) covering various technologies and job roles.

    Exams typically consist of multiple-choice questions and may include scenario-based questions that assess your ability to apply your knowledge in real-world situations.

    Note: Certification requirements and policies may be updated by IBM from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • How long is IBM certification valid for?

    The validity period of IBM certifications varies. Some certifications, particularly those focused on specific product versions or technologies, may have expiration dates.

    However, many IBM certifications, especially those focused on broader skills or newer technologies, do not have an expiration date.

    Note: Certification requirements and policies may be updated by IBM from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • Why take this course with Trainocate?

    Here’s what sets us apart:

    - Global Reach, Localized Accessibility: Benefit from our geographically diverse training hubs in 16 countries (and counting!).

    - Top-Rated Instructors: Our team of subject matter experts (with high average CSAT and MTM scores) are passionate to help you accelerate your digital transformation.

    - Customized Training Solutions: Choose from on-site, virtual classrooms, or self-paced learning to fit your organization and individual needs.

    - Experiential Learning: Dive into interactive training with our curated lesson plans. Participate in hands-on labs, solve real-world challenges, and take on comprehensive assessments.

    - Learn From The Best: With 30+ authorized training partnerships and countless awards from Microsoft, AWS, Google – you're guaranteed learning from the industry's elite.

    - Your Bridge To Success: We provide up-to-date course materials, helpful exam guides, and dedicated support to validate your expertise and elevate your career.

Keep Exploring

Course Curriculum

Course Curriculum

Training Schedule

Training Schedule

Exam & Certification

Exam & Certification

FAQs

Frequently Asked Questions

img-improve-career.jpg

Improve yourself and your career by taking this course.

More Courses By IBM

Browse All Courses
es90g-advanced-parallel-sysplex-operations-and-recovery-workshop-training
System Z

Advanced Parallel Sysplex Operations and Recovery Workshop

ES90G - Advanced Parallel Sysplex Operations and Recovery Workshop
ILT VILT
Course Duration 5 Days
b6258g-ibm-cognos-analytics-author-reports-fundamentals-v11
IBM Analytics

IBM Cognos Analytics: Author Reports Fundamentals v11.1.x

This course provides authors with an introduction to build reports using Cognos Analytics.
ILT VILT
Course Duration 3 Days
esb3g-ibm-z-os-management-facility-implementation-and-use-2-1-training
System Z

IBM z/OS Management Facility Implementation and Use 2.1

This course is designed to provide you with the skills required to install and customize, and use the functions and features provided by z/OSMF.
ILT VILT
Course Duration 3 Days
img-get-info.jpg

Ready to Take Your Business from Great to Awesome?

Level-up by partnering with Trainocate. Get in touch today.

Name
Email
Phone
I'm inquiring for
Inquiry Details

By providing your contact details, you agree to our Privacy Policy.

Stay Connected. Be the first to Know.

Company

Vendors

Services

Customer Service

© Copyright Trainocate 2024. All rights reserved.