Premium
COMPLETE CYBERSECURITY CERTIFICATION ISC2
1/29/2025
PREFACE
1/29/2025
ACKNOWLEDGMENT
1/29/2025
IMRAN AFZAL
1/29/2025
BOOK STRUCTURE
1/29/2025
Chapter 14: Network Security Infrastructure
1/29/2025
TABLE OF CONTENTS
1/29/2025
ISC2 Certified in Cybersecurity (CC) – Your Gateway to Cybersecurity................................. 15
1/29/2025
1 CHAPTER 1 INTRODUCTION
1/29/2025
IMRAN AFZAL & HASNAIN MAHMOOD 14
1/29/2025
1.3 ISC2 CERTIFIED IN CYBERSECURITY (CC) – YOUR GATEWAY TO CYBERSECURITY
1/29/2025
Imran Afzal & Hasnain Mahmood 15
1/29/2025
2 CHAPTER 2 THE SECURITY CONCEPTS OF INFORMATION ASSURANCE
1/29/2025
2.1.1.1 Confidentiality
1/29/2025
2.1.4.3 Maintaining Availability
1/29/2025
Imran Afzal & Hasnain Mahmood 18
1/29/2025
2.3.2.2 Possession Factors
1/29/2025
2.3.6.2 Facial Recognition
1/29/2025
2.4 DATA PRIVACY AND REGULATIONS
1/29/2025
Imran Afzal & Hasnain Mahmood 21
1/29/2025
2.5 UNDERSTANDING NON-REPUDIATION IN CYBERSECURITY
1/29/2025
Imran Afzal & Hasnain Mahmood 22
1/29/2025
confidentiality.
1/29/2025
3 CHAPTER 3 UNDERSTAND THE RISK MANAGEMENT PROCESS
1/29/2025
3.1 UNDERSTANDING THE RISK MANAGEMENT PROCESS
1/29/2025
Imran Afzal & Hasnain Mahmood 24
1/29/2025
3.2.3.4 External Cross-Check
1/29/2025
3.2.3.6 Statement Finalization
1/29/2025
3.3.2 Key Aspects of Risk Analysis
1/29/2025
3.3.3 Important Risk Terminologies
1/29/2025
3.3.3.4 Exposure
1/29/2025
3.3.3.6 Safeguard (Countermeasure)
1/29/2025
3.4 UNDERSTANDING RISK ASSESSMENT IN THE RISK MANAGEMENT PROCESS
1/29/2025
in the event of a breach.
1/29/2025
3.5 RISK ASSIGNMENT AND ACCEPTANCE IN THE RISK MANAGEMENT PROCESS
1/29/2025
Install and update anti-malware software.
1/29/2025
3.6 RISK MONITORING IN THE RISK MANAGEMENT PROCESS
1/29/2025
4 CHAPTER 4 UNDERSTAND THE SECURITY CONTROLS
1/29/2025
4.1 UNDERSTANDING SECURITY CONTROLS
1/29/2025
Imran Afzal & Hasnain Mahmood 32
1/29/2025
Incident response plans
1/29/2025
premises.
1/29/2025
5 CHAPTER 5 UNDERSTAND THE CODE OF ETHICS
1/29/2025
5.1 INTRODUCTION TO PROFESSIONAL CODE OF CONDUCT
1/29/2025
5.2.4 Key Principles of the ISC2 Code of Ethics
1/29/2025
5.3.2 The Four ISC2 Code of Ethics Canons
1/29/2025
5.3.3.1 Canon 1: Protect Society, the Commonwealth, and the infrastructure
1/29/2025
Imran Afzal & Hasnain Mahmood 37
1/29/2025
5.3.3.4 Canon 4: Advance and Protect the Profession
1/29/2025
6 CHAPTER 6 GOVERNANCE PROCESS
1/29/2025
6.1 UNDERSTANDING THE GOVERNANCE PROCESSES
1/29/2025
6.2 UNDERSTANDING GOVERNANCE PROCESS STANDARDS
1/29/2025
Imran Afzal & Hasnain Mahmood 40
1/29/2025
Imran Afzal & Hasnain Mahmood 41
1/29/2025
6.4 UNDERSTANDING PROCEDURES
1/29/2025
6.5 UNDERSTANDING REGULATIONS AND LAWS IN DATA PRIVACY
1/29/2025
Imran Afzal & Hasnain Mahmood 44
1/29/2025
7 CHAPTER 7 INCIDENT RESPONSE
1/29/2025
7.1 INCIDENT TERMINOLOGIES
1/29/2025
7.1.2 Key Incident Response Terminologies
1/29/2025
Intrusion
1/29/2025
7.2.3 Defining Incident Response
1/29/2025
7.2.4 The Goals of Incident Response
1/29/2025
7.2.5 Incident Response Priorities
1/29/2025
7.2.6 Why Incident Priority Matters
1/29/2025
7.2.7.2 Urgency: Determining the Speed of Response
1/29/2025
7.3.2 Roles and Responsibilities in Incident Response
1/29/2025
7.3.3.1 Minimizing Downtime and Financial Losses
1/29/2025
7.3.3.2 Quickly Assessing Cyber Threats and Implementing Corrective Measures
1/29/2025
7.3.3.4 Restoring Normal Operations and Preventing Data Loss
1/29/2025
7.3.3.6 Enhancing User Awareness and Response Readiness
1/29/2025
7.3.4.1 Minimizing the Impact of Cyber Incidents
1/29/2025
7.4.1 Roles and Responsibilities in Incident Response
1/29/2025
7.4.2.1 Minimizing Downtime and Financial Losses
1/29/2025
7.4.2.2 Quickly Assessing Cyber Threats and Implementing Corrective Measures
1/29/2025
7.4.2.4 Restoring Normal Operations and Preventing Data Loss
1/29/2025
7.4.2.6 Enhancing User Awareness and Response Readiness
1/29/2025
7.5 INCIDENT RESPONSE TEAM AND THEIR RESPONSIBILITIES
1/29/2025
Imran Afzal & Hasnain Mahmood 55
1/29/2025
Infrastructure and networking specialists
1/29/2025
Imran Afzal & Hasnain Mahmood 56
1/29/2025
Implement Recovery Procedures
1/29/2025
8 CHAPTER 8 BUSINESS CONTINUITY
1/29/2025
8.1 UNDERSTANDING BUSINESS CONTINUITY
1/29/2025
8.2 BUSINESS CONTINUITY: GOALS, IMPORTANCE, AND BENEFITS
1/29/2025
strategies.
1/29/2025
8.2.5 Benefits of Business Continuity
1/29/2025
8.3 COMPONENTS OF A BUSINESS CONTINUITY PLAN
1/29/2025
Imran Afzal & Hasnain Mahmood 61
1/29/2025
8.4 UNDERSTANDING BUSINESS IMPACT ANALYSIS
1/29/2025
8.4.1.3 Example of Business Impact Analysis
1/29/2025
Step 2: Communication and Coordination
1/29/2025
Step 5: IT System and Data Recovery
1/29/2025
Step 9: Recovery and Resumption of Operations
1/29/2025
9 CHAPTER 9 DISASTER RECOVERY
1/29/2025
9.2.7 Documentation and Maintenance
1/29/2025
9.4.6 Hospital Case Study
1/29/2025
9.4.7 Complex Data Dependencies in Large Organizations
1/29/2025
10 CHAPTER 10 PHYSICAL ACCESS CONTROLS
1/29/2025
10.1 ACCESS CONTROL CONCEPTS
1/29/2025
Examples:
1/29/2025
10.1.3.4 Electronic Access Control Systems
1/29/2025
10.1.3.5 Logical Access Control Systems
1/29/2025
10.2.1.1 Information
1/29/2025
10.2.1.4 Facilities
1/29/2025
10.3 ACCESS CONTROL ELEMENTS
1/29/2025
10.3.1.3 Subject vs. Object
1/29/2025
10.4 TYPES OF ACCESS CONTROL
1/29/2025
Secondary Control Types
1/29/2025
10.5.2 Key Points of Defense in Depth
1/29/2025
security measures effectively.
1/29/2025
data over the network.
1/29/2025
10.6 MONITORING TECHNIQUES AND TOOLS
1/29/2025
Imran Afzal & Hasnain Mahmood 82
1/29/2025
Identify and analyze policy violations
1/29/2025
10.7 PHYSICAL MONITORING CONTROLS
1/29/2025
Imran Afzal & Hasnain Mahmood 83
1/29/2025
10.8.1 Key Benefits of Logical Monitoring:
1/29/2025
responsible individuals.
1/29/2025
10.8.3.1 Security Logs
1/29/2025
10.8.3.2 System Logs
1/29/2025
10.8.3.3 Application Logs
1/29/2025
10.8.3.4 Firewall Logs
1/29/2025
10.8.3.5 Change Logs
1/29/2025
11 CHAPTER 11 LOGICAL ACCESS CONTROLS
1/29/2025
11.1 PRIVILEGES AND PRIVILEGED ACCOUNTS
1/29/2025
"Administrator" in Windows
1/29/2025
tasks like software installation and security updates.
1/29/2025
11.1.6.1 Standard User Accounts:
1/29/2025
11.1.6.2 Guest User Accounts:
1/29/2025
11.2 TYPES OF PRIVILEGED ACCOUNTS
1/29/2025
Install software
1/29/2025
Imran Afzal & Hasnain Mahmood 89
1/29/2025
11.3 PRIVILEGED ACCESS MANAGEMENT (PAM) AND ITS IMPORTANCE
1/29/2025
Imran Afzal & Hasnain Mahmood 91
1/29/2025
Imran Afzal & Hasnain Mahmood 92
1/29/2025
Example in Healthcare
1/29/2025
11.5.2 Key Objectives of Segregation of Duties
1/29/2025
11.5.3 Practical Examples of Segregation of Duties
1/29/2025
11.6 LOGICAL ACCESS CONTROL MODELS
1/29/2025
11.6.2 Key Characteristics of DAC:
1/29/2025
11.6.4 Key Characteristics of Non-DAC:
1/29/2025
11.7.2 Task-Based Access Control (TBAC)
1/29/2025
11.7.3 Rule-Based Access Control (RuBAC)
1/29/2025
11.8.1 What is ABAC?
1/29/2025
11.8.2 Benefits of ABAC
1/29/2025
11.8.3 ABAC in Practice
1/29/2025
Imran Afzal & Hasnain Mahmood 97
1/29/2025
Imran Afzal & Hasnain Mahmood 98
1/29/2025
Example:
1/29/2025
12 CHAPTER 12 COMPUTER NETWORKING
1/29/2025
12.1 UNDERSTANDING COMPUTER NETWORKING
1/29/2025
12.2 COMPONENTS OF COMPUTER NETWORKS
1/29/2025
12.2.2 Network Interface Cards (NICs)
1/29/2025
12.2.3 Transmission Cables/Signals
1/29/2025
12.2.4 Networking Devices
1/29/2025
12.2.6 Protocols
1/29/2025
12.3.1 Local Area Network (LAN)
1/29/2025
12.3.2 Wireless Local Area Network (WLAN)
1/29/2025
12.3.3 Personal Area Network (PAN)
1/29/2025
12.3.4 Campus Area Network (CAN)
1/29/2025
12.3.5 Metropolitan Area Network (MAN)
1/29/2025
12.3.6 Wide Area Network (WAN)
1/29/2025
12.3.7 Storage Area Network (SAN)
1/29/2025
12.3.8 Virtual Private Network (VPN)
1/29/2025
12.4 NETWORK DEVICES
1/29/2025
12.4.7 Server
1/29/2025
12.5 ETHERNET – A COMMON NETWORK STANDARD
1/29/2025
Imran Afzal & Hasnain Mahmood 106
1/29/2025
12.6 MEDIA ACCESS CONTROL (MAC) ADDRESS
1/29/2025
manufacturer.
1/29/2025
12.6.4 Types of MAC Addresses
1/29/2025
12.6.5 Importance of MAC Addresses
1/29/2025
12.7 UNDERSTANDING INTERNET PROTOCOL (IP) ADDRESS
1/29/2025
12.7.3.1 IPv4 (Internet Protocol Version 4)
1/29/2025
12.7.4 Loopback Address
1/29/2025
12.7.5 IPv6 (Internet Protocol Version 6)
1/29/2025
Imran Afzal & Hasnain Mahmood 110
1/29/2025
12.8.1.1 Types of Public IP Addresses
1/29/2025
Imran Afzal & Hasnain Mahmood 111
1/29/2025
12.9 INTERNETWORKING MODELS AND THE OSI MODEL
1/29/2025
networking applications.
1/29/2025
12.9.3 The Seven Layers of the OSI Model
1/29/2025
12.9.4.1 Application Layer (Layer 7)
1/29/2025
12.9.4.2 Presentation Layer (Layer 6)
1/29/2025
12.9.4.3 Session Layer (Layer 5)
1/29/2025
Functions of the Session Layer:
1/29/2025
12.9.5.1 Transport Layer (Layer 4)
1/29/2025
12.9.5.3 Network Layer (Layer 3)
1/29/2025
12.9.5.4 Data Link Layer (Layer 2)
1/29/2025
Imran Afzal & Hasnain Mahmood 116
1/29/2025
12.9.5.5 Physical Layer (Layer 1)
1/29/2025
Imran Afzal & Hasnain Mahmood 117
1/29/2025
12.10.3 Stateless vs. Stateful Communication
1/29/2025
12.10.4 TCP/IP vs. OSI Model
1/29/2025
Imran Afzal & Hasnain Mahmood 118
1/29/2025
Functions of the Network Link Layer:
1/29/2025
Conclusion
1/29/2025
12.11 TCP 3-WAY HANDSHAKE PROCESS
1/29/2025
Imran Afzal & Hasnain Mahmood 121
1/29/2025