Cyber Security – Fridley Web Services

After decades of working as a consultant in IT, from web-dev, networking management, social media and a range of other bits and pieces, I find myself wanting to stretch into a new direction. Cyber security is something I have followed for about a decade, but having never bothered to get certified, I’m now finding transitioning into this space, via HR filters, challenging.

But as someone up for a challenge, and excited by the possibility of learning more about this ever-changing, ever-evolving industry, I thought I’d list what’s on my to-do list, and any useful resources I find along the way.

N.B. I did not come up with this to-do list out of thin air. A family member directed me to A Cyber Threat Intelligence Self-Study Plan: Part 1 and thankfully there is now also a “Part 2“. Other links and recommendations are from people within the industry, or other recommendations that I have found along the way.

To-Do

Watch ” 3 Key Lessons that CTI Teams Should Learn from the Past”

Cyber Threat Intelligence

Read “CTI SquadGoals: Setting Requirements”

Cyber Threat Intelligence

Watch Week 6 of Chris Sanders’ free Cuckoo’s Egg course

Cyber Threat Intelligence

Read – “Industrial Control Threat Intelligence”

Cyber Threat Intelligence

Watch – The Cycle of Cyber Threat Intelligence

Cyber Threat Intelligence

Research Sherman Kent and/or Richards Heuer

Cyber Threat Intelligence

Read Richards Heuer’s Psychology of Intelligence Analysis

Cyber Threat Intelligence

9 Principles of Sherman Kent’s Analytic Doctrine

Cyber Threat Intelligence

Learn more about “Bumblebee” Spearfishing

News/Research

“More reading”

CompTIA Security+ SY0-601

Tools/Resources

Crypto General Practice

Common Ports

ports

Nmap – Summary/Flags

flags, nmap

Crypto Acronym Practice

Acronym

CompTIA Security+: Security Acronym List

Acronym, Vocab

CompTIA Security+: 1.3 Potential Attack Indicators

Vocab, Wordlist

CompTIA Security+: 1.2 Analyze types of attack.

Vocab, Wordlist

CompTIA Security+: 1.1 Social Engineering Principles

Vocab, Wordlist

CompTIA Security+: 1.1 Security wordlist/vocab

Vocab, Wordlist

GRC – Password Generator

Password

News

CompTIA Security+: First Pract Test… OMG

Acronym, Vocab

Security Now – BumbleBee Loader

Exploits, Spearfishing

Achievements

Cyber Incident Response Specialization

Analysis, Certificates/Achievements, Computer Security Incident Management, CSIH, Incident Response, Malware Analysis, Memory Forensics, Network Forensics, Traffic Analysis

Technical Deep Dive with Incident Response Tools

Analysis, Certificates/Achievements, Computer Security Incident Management, Cyber Incident Response Specialization, Incident Response, Malware Analysis, Memory Forensics, Network Forensics, Traffic Analysis

Stages of Incident Response

Certificates/Achievements, Continuous Function, Cyber Incident Response Specialization, Ordered Pair, Representational State Transfer (REST), Verification and Validation

Incident Response Fundamentals

Certificates/Achievements, Computer Security Incident Management, Cyber Incident Response Specialization, Malware Analysis, Memory Forensics, Traffic Analysis

Asian Studies – UNSW

Advanced Japanese, Certificates/Achievements, Industrial Relations, Japanese Business Studies, Negotiation and Advocacy, Occupational Health and Safety

Master of International Relations – UNSW

Certificates/Achievements, International Political Economy, International Relations, US Foreign Policy

Blockchain Scalability and its Foundations in Distributed Systems

Blockchain Abstractions, Blockchain development, Certificates/Achievements, History of Cryptocurrencies, Quantum computing risks, Risks of Double Spending

Cybersecurity IT Fundamentals Specialization

Certificates/Achievements, Cryptography, Digital Certificates, Encoding, Encryption, Endpoint Protection, , Hashing, HIPAA, NIST, Patching, PCL, SANs, Server Administration

Cybersecurity Compliance Framework & System Administration

Certificates/Achievements, Cryptography, Cybersecurity IT Fundamentals Specialization, Digital Certificates, Encoding, Encryption, Endpoint Protection, , Hashing, HIPAA, NIST, Patching, PCL, SANs, Server Administration

Cybersecurity Roles, Processes & Operating System Security

Certificates/Achievements, Cybersecurity IT Fundamentals Specialization, Cybersecurity Processes, File Systems, Linux, macOS, Mobile, Operating Systems, Virtualization, Windows