Security Fundamentals

Security Fundamentals introduces basic computer and network security concepts and methodologies. Covers principles of security; compliance and operational security; threats and vulnerabilities; network security; application, data, and host security; access control and identity management; and cryptography.

Prerequisites: Introduction to Networking (C or better)

Students will:

1. Explain basic security concepts.
2. Identify and explain appropriate use of security tools to facilitate security.
3. Evaluate current security issues related to computer and network systems.
4. Evaluate and select appropriate incident response procedures, disaster recovery, and risk identification techniques to ensure business continuity.
5. Differentiate various malware and systems security threats against computers and networks.
6. Explain the vulnerabilities and mitigations associated with computers and network devices.
7. Explain the proper use of common tools for carrying out vulnerability assessments.
8. Identify and describe potential application and data vulnerabilities, including buffer overflow, DLL injection, and SQL injection.
9. Explain how host firewalls, malware protection, and updates are important to application and data security.
10. Describe the importance of user accounts and associated permissions.
11. Compare and discuss logical and physical access control security methods.
12. Explain authentication models and identify components of each model.
13. Summarize and explain general cryptography concepts.
14. Demonstrate public and private key pairs for digital signing and encryption/decryption.