When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Certificate?

When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Assets, Threats, and Vulnerabilities

本课程是 Google Cybersecurity 专业证书的一部分

位教师：Google Career Certificates

361,777 人已注册

包含在中

了解更多

4个模块

深入了解一个主题并学习基础知识。

4,127 条评论

初级等级

无需具备相关经验

灵活的计划

2 周在 10 小时一周

自行安排学习进度

98%

大多数学生喜欢此课程

4个模块

深入了解一个主题并学习基础知识。

4,127 条评论

初级等级

无需具备相关经验

灵活的计划

2 周在 10 小时一周

自行安排学习进度

98%

大多数学生喜欢此课程

您将学到什么

Classify assets
Analyze an attack surface to find risks and vulnerabilities
Identify threats, such as social engineering, malware and web-based exploits
Summarize the threat modeling process

您将获得的技能

您将学习的工具

MITRE ATT&CK Framework

要了解的详细信息

可分享的证书

添加到您的领英档案

作业

26 项作业

授课语言：英语（English）

积累 Computer Security and Networks 领域的专业知识

本课程是 Google Cybersecurity 专业证书专项课程的一部分

在注册此课程时，您还会同时注册此专业证书。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
通过 Google 获得可共享的职业证书

该课程共有4个模块

This is the fifth course in the Google Cybersecurity Certificate. These courses will further explore the importance of protecting organizational assets from threats, risks, and vulnerabilities. They will also continue to develop an understanding of asset classification and how to use the National Institute of Standards and Technology’s (NIST) Cybersecurity Framework (CSF), as well as security controls, to protect assets and mitigate risk. Additionally, learners will gain an understanding of how to develop a threat actor mindset to help protect assets from ever-evolving threat actor tactics and techniques.

By the end of this course, you will: - Learn effective data handling processes. - Discuss the role of encryption and hashing in securing assets. - Describe how to effectively use authentication and authorization. - Explain how common vulnerability exposures are identified by MITRE. - Analyze an attack surface to find risks and vulnerabilities. - Identify threats, such as social engineering, malware, and web-based exploits. - Summarize the threat modeling process.

单元详情

In this module, learners will be introduced to the way organizations determine what they want to protect. They will learn about the connection between managing risk and classifying assets by exploring the unique challenge of securing physical and digital assets. Learners will be introduced to the NIST framework standards, guidelines and best practices to manage cybersecurity risk.

涵盖的内容

10个视频9篇阅读材料6个作业1个插件

10个视频总计32分钟

Introduction to Course 5 3分钟
Da'Queshia: My path to cybersecurity2分钟
Welcome to module 1 2分钟
The what, why, and how of asset security4分钟
Tri: Life in asset security3分钟
Security starts with asset classification 4分钟
Assets in a digital world 4分钟
Elements of a security plan4分钟
The NIST Cybersecurity Framework4分钟
Wrap-up 2分钟

9篇阅读材料总计48分钟

Course 5 overview4分钟
Helpful resources and tips8分钟
Understand risks, threats, and vulnerabilities8分钟
Common classification requirements 4分钟
Activity Exemplar: Classify the assets connected to a home network4分钟
The emergence of cloud security 8分钟
Security guidelines in action 4分钟
Activity Exemplar: Score risks based on their likelihood and severity4分钟
Glossary terms from module 1 4分钟

6个作业总计134分钟

Module 1 challenge 50分钟
Test your knowledge: Introduction to assets8分钟
Activity: Classify the assets connected to a home network30分钟
Test your knowledge: Digital and physical assets8分钟
Test your knowledge: Risk and asset security8分钟
Activity: Score risks based on their likelihood and severity30分钟

1个插件总计10分钟

Identify: States of data in the workplace10分钟

In this module, learners will focus on security controls that help protect organizational assets. They will explore how privacy considerations impact asset security. They will gain an understanding of encryption and the role it plays in maintaining the privacy of digital assets. They will also explore how authentication and authorization systems verify that someone is who they claim to be.

涵盖的内容

11个视频14篇阅读材料6个作业4个应用程序项目

11个视频总计35分钟

Welcome to module 22分钟
Security controls3分钟
Heather: The importance of protecting PII 2分钟
Fundamentals of cryptography4分钟
Public key infrastructure5分钟
Non-repudiation and hashing3分钟
Access controls and authentication systems4分钟
The mechanisms of authorization5分钟
Why we audit user activity3分钟
Tim: Finding purpose in protecting assets1分钟
Wrap-up2分钟

14篇阅读材料总计96分钟

Principle of least privilege8分钟
The data lifecycle 12分钟
Information privacy: Regulations and compliance8分钟
Activity Exemplar: Determine appropriate data handling practices4分钟
Symmetric and asymmetric encryption 8分钟
Resources for completing labs4分钟
Lab tips and troubleshooting steps4分钟
Exemplar: Decrypt an encrypted a message8分钟
The evolution of hash functions8分钟
Exemplar: Create hash values8分钟
The rise of SSO and MFA 8分钟
Identity and access management8分钟
Activity Exemplar: Improve authentication and authorization for a small business4分钟
Glossary terms from module 2 4分钟

6个作业总计138分钟

Module 2 challenge 50分钟
Activity: Determine appropriate data handling practices30分钟
Test your knowledge: Safeguard information8分钟
Test your knowledge: Encryption methods10分钟
Activity: Improve authentication, authorization, and accounting for a small business30分钟
Test your knowledge: Authentication, authorization, and accounting10分钟

4个应用程序项目总计80分钟

Activity: Decrypt an encrypted message30分钟
Optional Exemplar: Decrypt an encrypted message10分钟
Activity: Create hash values30分钟
Optional Exemplar: Create hash values10分钟

In this module, learners will build an understanding of the vulnerability management process. They will learn about common vulnerabilities . They will develop an attacker mindset by examining the ways vulnerabilities can become threats to asset security if they are exploited.

涵盖的内容

10个视频12篇阅读材料7个作业

10个视频总计33分钟

Welcome to module 3 2分钟
Vulnerability management 4分钟
Defense in depth strategy 4分钟
Common vulnerabilities and exposures 5分钟
Vulnerability assessments 3分钟
Omad: My learning journey into cybersecurity2分钟
Protect all entry points4分钟
Niru: Adopt an attacker mindset3分钟
Pathways through defenses 4分钟
Wrap-up 2分钟

12篇阅读材料总计102分钟

Vulnerabilities of CI/CD10分钟
The OWASP Top 1012分钟
Open source intelligence12分钟
Approaches to vulnerability scanning 8分钟
The importance of updates 8分钟
Penetration testing 12分钟
Portfolio Activity Exemplar: Analyze a vulnerable system for a small business4分钟
Approach cybersecurity with an attacker mindset8分钟
Types of threat actors8分钟
Fortify against brute force cyber attacks12分钟
Activity Exemplar: Identify the attack vectors of a USB drive4分钟
Glossary terms from module 3 4分钟

7个作业总计164分钟

Module 3 challenge 50分钟
Test your knowledge: Flaws in the system 8分钟
Test your knowledge: Identify system vulnerabilities8分钟
Portfolio Activity: Analyze a vulnerable system for a small business30分钟
Self-reflection: Approach cybersecurity with an attacker mindset30分钟
Activity: Identify the attack vectors of a USB drive30分钟
Test your knowledge: Cyber attacker mindset8分钟

In this module, learners will explore the common types of threats to digital asset security. They will also examine the tools and techniques used by cybercriminals to target assets. After gaining this understanding, they will be introduced to the threat modeling process and learn ways security professionals stay ahead of security breaches.

涵盖的内容

12个视频10篇阅读材料7个作业2个插件

12个视频总计43分钟

Welcome to module 4 2分钟
The criminal art of persuasion 4分钟
Phishing for information 5分钟
Malicious software5分钟
The rise of cryptojacking4分钟
Cross-site scripting (XSS)5分钟
Exploitable gaps in databases 4分钟
A proactive approach to security 4分钟
Chantelle: The value of diversity in cybersecurity2分钟
PASTA: The Process for Attack Simulation and Threat Analysis 4分钟
Wrap-up 2分钟
Course wrap-up3分钟

10篇阅读材料总计60分钟

Social engineering tactics8分钟
Types of phishing8分钟
An introduction to malware 8分钟
Prevent injection attacks12分钟
Traits of an effective threat model 8分钟
Activity Exemplar: Apply the PASTA threat model framework4分钟
Glossary terms from module 4 4分钟
Reflect and connect with peers2分钟
Course 5 glossary 2分钟
Get started on the next course 4分钟

7个作业总计146分钟

Module 4 challenge 50分钟
Test your knowledge: Social engineering 8分钟
Activity: Filter malicious emails30分钟
Test your knowledge: Malware 8分钟
Test your knowledge: Web-based exploits10分钟
Activity: Apply the PASTA threat model framework30分钟
Test your knowledge: Threat modeling10分钟

2个插件总计20分钟

Identify: Steps of the threat model process10分钟
Explore: Apply PASTA to an application's threat model10分钟

获得职业证书

将此证书添加到您的 LinkedIn 个人资料、简历或履历中。在社交媒体和绩效考核中分享。

位教师

授课教师评分

(943个评价)

Google Career Certificates

Google

386 门课程16,633,933 名学生

提供方

Google

学生评论

5 stars
84.88%
4 stars
11.14%
3 stars
2.30%
2 stars
0.72%
1 star
0.94%

显示 3/4127 个

已于 Dec 11, 2023审阅

Overall very informative and well presented course. I'd really like more hands-on tasks than purely theoretical frameworks where possible. But still happy and motivated by this course content.

已于 Jun 7, 2023审阅

The structure of this course isn't as clear as the previous ones, and some of the quiz questions are a little vague and confusing. But overall the instructor did a great job.

已于 Sep 14, 2023审阅

Such a great course!! learning a lot and discovering about so many things about what we are about to protect.. Thank you for this Google and Coursera!!

查看更多评论