SlideShare a Scribd company logo

CYB205-1 Evolving Threat Landscapes_01.pdf

S
ssuser4db968

The document outlines a cybersecurity course focused on evolving threats, mitigation strategies, and compliance policies. It covers topics such as threat intelligence types, risk management, and various sources of threat intelligence, including open-source and commercial feeds. Course evaluation includes participation in discussions, assignments, a group project, and a final exam.

Education
1 of 14
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Click Here CYB205-1 Evolving Threat Landscapes Lec. 01
COURSE LEARNING OUTCOMES  Describe the evolving cybersecurity threat landscape.  Explain cybersecurity mitigation and defense strategies.  Discuss modern-day cybersecurity trends.  Define cyber security policy, enforcement and compliance.  Define Artificial Intelligence (AI).
COURSE EVALUATION  Discussion Forums & Debate: 30%  Individual Assignment: 15%  Group Project (Case Study): 25%  Final quiz/exam: 30%
Threat, Vulnerability, and Risk Threat Actor Threat intelligence types Threat Intelligence Feeds Threat intelligence sources Traffic Light Protocol (TLP) Agenda
Threat, Vulnerability, and Risk Threat Any circumstance or event with the potential to adversely impact organizational operations, assets, or individuals. Vulnerability Weakness in an information system, system security procedures, internal controls, or implementation that could be exploited or triggered. Risk A measure of the extent to which an entity is threatened by a potential circumstance or event.
CYB205-1 Evolving Threat Landscapes_01.pdf
CYB205-1 Evolving Threat Landscapes_01.pdf
Threat intelligence types Strategic High level info on changing risks Tactical Attacker Tools Tactics, Procedures Operational Incoming attacks against company or industry Technical Indicators of Compromise High level Low level Low Time-to-Live High Time-to-Live
• What? • Threat intelligence is information about threats and threat actors that helps mitigate harmful events in cyberspace. • Why? • Help organizations to understand the threats that have, will, or are currently targeting the organization. • How? • Open-source intelligence • Commercial intelligence Threat Intelligence Feeds
OSINT Open Source Intelligence • Derived from open sources (e.g. mainstream media, Internet forums, paste sites, etc. • Pros: good for ‘context’ and ‘big picture’ • Cons: multiple languages, interpretation, noise TECHINT Technical Intelligence • Technical indicators (e.g. IP addresses, hashes, domains, tools & techniques) • Pros: easy to consume and drive automation • Cons: difficult to ‘contextualize’ SIGINT Signals Intelligence • Derived from analysis of communications, often in one’s own environment • Pros: low noise; if you’re seeing it, you’re experiencing it • Cons: requires extensive apparatus Threat intelligence sources
• Canadian Center for cyber Security CCCS • Department of Homeland Security: Automated Indicator Sharing • FBI: InfraGard Portal • @abuse.ch: Ransomware Tracker • SANS: Internet Storm Center • VirusTotal: VirusTotal • Cisco: Talos Intelligence • VirusShare: VirusShare Malware Repository • Google: Safe Browsing • National Council of ISACs: Member ISACs • The Spamhaus Project: Spamhaus Open-source Intelligence Feeds Commercial Intelligence Feeds  Recorded Future
NIST 800-150 “Guide to Threat Information Sharing” • Threat information that has been aggregated, transformed, analysed, interpreted, or enriched to provide the necessary context for decision-making processes.
CYB205-1 Evolving Threat Landscapes_01.pdf
Thank You

More Related Content

PDF
Threat Intelligence 101 - Steve Lodin - Submitted
Steve Lodin
 
PDF
Threat Intelligence: State-of-the-art and Trends - Secure South West 2015
Andreas Sfakianakis
 
PDF
SecurityOperations
Antonio (Tony) Robinson
 
PPTX
Cyber threat Intelligence and Incident Response by:-Sandeep Singh
OWASP Delhi
 
PPTX
Proactive Approach to OT incident response - HOUSECCON 2023
Chris Sistrunk
 
PDF
DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...
Andris Soroka
 
PPTX
Cyber Threat Hunting Workshop
Digit Oktavianto
 
PDF
Cyber Threat Hunting Workshop.pdf
ssuser4237d4
 
Threat Intelligence 101 - Steve Lodin - Submitted
Steve Lodin
 
Threat Intelligence: State-of-the-art and Trends - Secure South West 2015
Andreas Sfakianakis
 
SecurityOperations
Antonio (Tony) Robinson
 
Cyber threat Intelligence and Incident Response by:-Sandeep Singh
OWASP Delhi
 
Proactive Approach to OT incident response - HOUSECCON 2023
Chris Sistrunk
 
DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...
Andris Soroka
 
Cyber Threat Hunting Workshop
Digit Oktavianto
 
Cyber Threat Hunting Workshop.pdf
ssuser4237d4
 

Similar to CYB205-1 Evolving Threat Landscapes_01.pdf (20)

PDF
Cyber Threat Hunting Workshop.pdf
ssuser4237d4
 
PPTX
Security Operations Center Analyst Presentation
kundansaraf1
 
PDF
The Threat Landscape & Network Security Measures
Carl B. Forkner, Ph.D.
 
PDF
Cyber Security Beyond 2020 – Will We Learn From Our Mistakes?
Raffael Marty
 
PDF
[Bucharest] Attack is easy, let's talk defence
OWASP EEE
 
PDF
Custom defense - Blake final
Minh Le
 
PPTX
Best Practices for Scoping Infections and Disrupting Breaches
Splunk
 
PPTX
Security in the age of open source - Myths and misperceptions
Tim Mackey
 
PDF
Caccia alle Minacce: Intelligence e Hunting nel cyberspace
Speck&Tech
 
PPTX
Managing security threats in today’s enterprise
Quick Heal Technologies Ltd.
 
PPTX
Cyber Threat Hunting with Phirelight
Hostway|HOSTING
 
PPTX
Using Threat Intelligence to Address Your Growing Digital Risk
SurfWatch Labs
 
PDF
2015 Cyber Security
Allen Zhang
 
PPTX
Cyber security for business
Daniel Thomas
 
PDF
NetSecurity_ThreatResponder(r)_Capability_Brief_021116_Rev0
James Perry, Jr.
 
PPT
Cs461 06.risk analysis (1)
neeraj.sihag
 
PDF
John Walsh, Sypris on Cyber Physical Systems - Boston SECoT MeetUp 2015
Paul F. Roberts
 
PDF
Webinar - Reducing the Risk of a Cyber Attack on Utilities
WPICPE
 
PDF
distinguishing-threat-actors-vectors-and-intelligence-sources-slides.pdf
DoctorGarcia1
 
PDF
SplunkLive Auckland 2015 - Splunk for Security
Splunk
 
Cyber Threat Hunting Workshop.pdf
ssuser4237d4
 
Security Operations Center Analyst Presentation
kundansaraf1
 
The Threat Landscape & Network Security Measures
Carl B. Forkner, Ph.D.
 
Cyber Security Beyond 2020 – Will We Learn From Our Mistakes?
Raffael Marty
 
[Bucharest] Attack is easy, let's talk defence
OWASP EEE
 
Custom defense - Blake final
Minh Le
 
Best Practices for Scoping Infections and Disrupting Breaches
Splunk
 
Security in the age of open source - Myths and misperceptions
Tim Mackey
 
Caccia alle Minacce: Intelligence e Hunting nel cyberspace
Speck&Tech
 
Managing security threats in today’s enterprise
Quick Heal Technologies Ltd.
 
Cyber Threat Hunting with Phirelight
Hostway|HOSTING
 
Using Threat Intelligence to Address Your Growing Digital Risk
SurfWatch Labs
 
2015 Cyber Security
Allen Zhang
 
Cyber security for business
Daniel Thomas
 
NetSecurity_ThreatResponder(r)_Capability_Brief_021116_Rev0
James Perry, Jr.
 
Cs461 06.risk analysis (1)
neeraj.sihag
 
John Walsh, Sypris on Cyber Physical Systems - Boston SECoT MeetUp 2015
Paul F. Roberts
 
Webinar - Reducing the Risk of a Cyber Attack on Utilities
WPICPE
 
distinguishing-threat-actors-vectors-and-intelligence-sources-slides.pdf
DoctorGarcia1
 
SplunkLive Auckland 2015 - Splunk for Security
Splunk
 
Ad

Recently uploaded (20)

PPTX
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
PDF
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
PDF
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PDF
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
PDF
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
PDF
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
PPTX
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
PPTX
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
PDF
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
PDF
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
PPTX
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
PPTX
Pharma ospi slides which help in ospi learning
rameetkumar304
 
PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PPTX
master seminar digital applications in india
ananyaray35
 
PDF
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
PPTX
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
Pharma ospi slides which help in ospi learning
rameetkumar304
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
master seminar digital applications in india
ananyaray35
 
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
Ad

CYB205-1 Evolving Threat Landscapes_01.pdf

  • 2. COURSE LEARNING OUTCOMES  Describe the evolving cybersecurity threat landscape.  Explain cybersecurity mitigation and defense strategies.  Discuss modern-day cybersecurity trends.  Define cyber security policy, enforcement and compliance.  Define Artificial Intelligence (AI).
  • 3. COURSE EVALUATION  Discussion Forums & Debate: 30%  Individual Assignment: 15%  Group Project (Case Study): 25%  Final quiz/exam: 30%
  • 4. Threat, Vulnerability, and Risk Threat Actor Threat intelligence types Threat Intelligence Feeds Threat intelligence sources Traffic Light Protocol (TLP) Agenda
  • 5. Threat, Vulnerability, and Risk Threat Any circumstance or event with the potential to adversely impact organizational operations, assets, or individuals. Vulnerability Weakness in an information system, system security procedures, internal controls, or implementation that could be exploited or triggered. Risk A measure of the extent to which an entity is threatened by a potential circumstance or event.
  • 8. Threat intelligence types Strategic High level info on changing risks Tactical Attacker Tools Tactics, Procedures Operational Incoming attacks against company or industry Technical Indicators of Compromise High level Low level Low Time-to-Live High Time-to-Live
  • 9. • What? • Threat intelligence is information about threats and threat actors that helps mitigate harmful events in cyberspace. • Why? • Help organizations to understand the threats that have, will, or are currently targeting the organization. • How? • Open-source intelligence • Commercial intelligence Threat Intelligence Feeds
  • 10. OSINT Open Source Intelligence • Derived from open sources (e.g. mainstream media, Internet forums, paste sites, etc. • Pros: good for ‘context’ and ‘big picture’ • Cons: multiple languages, interpretation, noise TECHINT Technical Intelligence • Technical indicators (e.g. IP addresses, hashes, domains, tools & techniques) • Pros: easy to consume and drive automation • Cons: difficult to ‘contextualize’ SIGINT Signals Intelligence • Derived from analysis of communications, often in one’s own environment • Pros: low noise; if you’re seeing it, you’re experiencing it • Cons: requires extensive apparatus Threat intelligence sources
  • 11. • Canadian Center for cyber Security CCCS • Department of Homeland Security: Automated Indicator Sharing • FBI: InfraGard Portal • @abuse.ch: Ransomware Tracker • SANS: Internet Storm Center • VirusTotal: VirusTotal • Cisco: Talos Intelligence • VirusShare: VirusShare Malware Repository • Google: Safe Browsing • National Council of ISACs: Member ISACs • The Spamhaus Project: Spamhaus Open-source Intelligence Feeds Commercial Intelligence Feeds  Recorded Future
  • 12. NIST 800-150 “Guide to Threat Information Sharing” • Threat information that has been aggregated, transformed, analysed, interpreted, or enriched to provide the necessary context for decision-making processes.