CISM 2022: Common Network Security Threats

Some security controls are very specific to the threat that they address. Information security managers must be well versed in common network security threats in order to minimize the impact of realized threats on business processes.

In this course you will start by exploring various types of threat actors and their motivation for attacking networks. You will review industry standards related to categorizing threats including common vulnerabilities and exposures (CVEs) the MITRE ATT&CK knowledge base and the OWASP Top 10 web application security attacks. Next you will learn how bug bounties are paid by companies to ensure the utmost in security for their products which can influence customer choices. You will discover how various types of network attacks are executed including Wi-Fi attacks SYN flood attacks buffer overflow attacks advanced persistent threats (APTs) and distributed denial-of-service (DDoS) attacks. Lastly you will see how VPN anonymizer solutions and the Tor web browser can be used for anonymous network connectivity for legitimate as well as illegal purposes.

This course can be used to prepare for the Certified Information Security Manager (CISM) exam.