Introduction to Cybersecurity

00:00

it was a Monday morning and I was

00:02

digitally empty meaning meaning I had to

00:05

leave my smartphone a laptop anything

00:06

digital I had to leave behind as they

00:08

checked my clearance level and let me in

00:11

and it turns out that's the process that

00:13

has to be followed when you're entering

00:14

a secure area and I thought to myself as

00:17

I was working on those systems whoa back

00:20

in the 80s I was a cashier and now I'm

00:22

in this you know secured area working on

00:24

some really amazing secure systems how'd

00:26

this happen and the answer is it happens

00:28

one step at a time and the market and

00:30

the need for security and cyber security

00:32

is huge and in this nugget I like to

00:35

chat with you about some of the drivers

00:36

for that and also we'll take a look in

00:38

this course as some potential

00:39

opportunities in cyber security careers

00:41

let's take a closer look in the early

00:45

days we had closed systems with old

00:47

legacy systems like mainframes with very

00:49

limited access it was centrally managed

00:52

and there wasn't just easy access into

00:54

the network to get to the mainframe we

00:56

came in through a terminal and as a

00:58

result there wasn't that many possible

00:59

attack vectors or methods if you will

01:01

that could be used to access that data

01:03

illegally unlawfully or compromise that

01:05

data but in the 80s as we started

01:07

networking and connecting devices

01:09

together the network became more and

01:11

more available first with Wired local

01:13

area networks LANs and then with

01:15

wireless access with things like Wi-Fi

01:17

it simply made it easier for individuals

01:19

to connect both honest and innocent

01:21

users as well as malicious individuals

01:24

also instead of having centralized

01:26

servers we now have distributed devices

01:28

we have computers with processing power

01:30

we have servers with processing power we

01:32

can have servers in the cloud so having

01:34

our content and services spread across

01:36

multiple devices also allows more

01:38

potential attack vectors or methods for

01:40

compromise of those systems another big

01:43

challenge are applications so we might

01:46

have a user

01:47

let's put Bob out here so we may have

01:49

Bob that's using an application then

01:51

that application is then accessing data

01:53

on a back-end server somewhere but if

01:55

that app is not secure that allows

01:57

additional vulnerabilities to exist

01:59

where some unauthorized individual could

02:01

compromise or access our data and as far

02:04

as attackers go the attackers out there

02:06

are in the millions of potential

02:08

attackers and I'm sure that hundreds of

02:10

thousands of those attackers are

02:12

actually really

02:13

good at what they do and that's why it's

02:16

important for organizations and

02:17

governments and individuals to be really

02:19

good at cybersecurity

02:20

now the question may come up Keith what

02:22

is cybersecurity effectively it's us

02:24

protecting our systems our networks our

02:27

applications from any kind of digital

02:29

attack or compromise and the reason is

02:32

so important is because it's so

02:34

expensive if there is compromise to our

02:36

systems and to our networks and to our

02:38

data case in point we may have an

02:40

organization that spent a decade in

02:42

building their business and putting

02:44

other systems in place they may have

02:45

hundreds of employees but if they are

02:47

attacked and compromised and all the

02:49

data they had regarding clients and

02:51

personally identifiable information and

02:53

other company secrets if that's all

02:54

stolen or exfiltrated out of the company

02:57

that may be the end of the company from

02:59

one simple security breach and let's

03:01

pause for a moment and think to

03:03

ourselves ok what does a company or

03:04

organization really need regarding

03:06

security and I think it boils down to

03:08

three basic things number one is that

03:11

only the people who are authorized who

03:13

are supposed to be able to access and

03:15

see and modify the data only those

03:17

people should be able to do that and to

03:19

make that happen we're gonna have to use

03:20

good authentication which is identifying

03:23

who an individual is or entity is as

03:24

well as authorization controlling what

03:27

they're allowed to do and we're gonna do

03:28

that with technical controls we're not

03:30

just gonna do the honor system

03:32

you know only login if you're supposed

03:33

to we're gonna force that with controls

03:35

called technical controls that make sure

03:38

that when Bob's logging in it's really

03:39

Bob and some methods that we might use

03:41

for authentication include two-factor

03:44

authentication

03:45

an example of that is something that Bob

03:47

knows like a pin or a password along

03:50

with another factor or another element

03:52

such as something Bob has like a car the

03:55

smart card that might have a computer

03:57

chip in it or a digital certificate in

03:59

it and both of those elements both of

04:01

those factors if you will are required

04:03

for Bob to log in and that would be a

04:05

good example of doing authentication to

04:07

prove that Bob is really Bob then once

04:09

Bob logs in and proves who he is

04:11

based on his permissions and rights he

04:13

can access various resources based on

04:15

his authorization like permissions of

04:17

what Bob's allowed to do another

04:19

security goal would be to make sure that

04:20

the unauthorized people shouldn't be

04:23

able to see our sensitive our private

04:25

information and the challenges

04:27

our information can be lots of places it

04:29

can be sitting at rest on a disk or a

04:31

flash drive or it could be moving

04:34

through the network coursing through the

04:36

veins of our network and that would be

04:37

referred to as data in transit and if

04:40

somebody steals a hard drive or if they

04:42

start listening in on the network

04:44

traffic and stealing the data how do we

04:46

protect it in one big way of keeping

04:48

that data that information confidential

04:50

so the unauthorized individual can't

04:52

read it or make sense of it is to use

04:54

encryption which is effectively

04:57

scrambling the data so that the

04:59

unauthorized people can't make sense of

05:00

it and popular methods of scrambling

05:02

data in motion include IPSec which is

05:05

just an acronym that means we're

05:06

securing IP and there's a whole bunch of

05:08

rules that are set up behind that to

05:10

make that possible another one to

05:11

protect data in motion is referred to as

05:14

TLS or SSL which is transport layer

05:16

security or Secure Sockets Layer and

05:18

that's a very popular option that we use

05:20

when we connect from a computer out to a

05:23

website that not only provides the

05:25

encryption and confidentiality it also

05:26

helps us to verify that we are talking

05:28

to the correct site and not some hacker

05:30

site and then the third element that a

05:32

company wants as far as protecting its

05:34

resources and assets and doing good

05:36

cyber security is to consider the

05:38

potential compromises or attacks that

05:41

might come up and then regarding those

05:42

compromises think about before during

05:46

and after and part of cyber security is

05:51

to consider okay before the attack

05:53

happens what could happen what are the

05:55

vulnerabilities or weaknesses that each

05:57

of our aspects of our system may have

05:58

and then put in countermeasures or

06:01

precautionary measures that can help

06:03

prevent that type of attack from being

06:05

successful and like my mom said a stitch

06:08

in time saves nine and preventing an

06:10

attack is way more desirable and takes a

06:13

lot less time and effort than cleaning

06:15

up after an attack

06:16

however if attacks do happen or

06:18

compromises do happen part of cyber

06:21

security would be to respond to those

06:23

attacks and that way the damage can be

06:25

identified contained with the intent to

06:28

restore full functionality and full

06:30

security and also minimize the impact

06:32

the negative impact of that security

06:34

breach and then after an attack there

06:36

may be some investigations that are

06:38

needed so part of cyber security would

06:40

be a well

06:41

thought-out plan of how we're going to

06:43

do forensics and investigations

06:45

regarding what happened to clearly

06:47

identify what did occur and the lessons

06:50

learned from that would also be used to

06:51

help prevent that type of an attack from

06:53

happening in the future and a huge

06:55

aspect regarding cybersecurity is

06:57

education

06:58

wow that's green Green is a little hard

07:01

to read let me read you that education

07:03

because a professional in the cyber

07:05

security field is just one person or one

07:07

team and there needs to be education

07:09

across the board users are often the

07:11

weakest link

07:12

case in point there may be a user here

07:14

like Bob and if Bob has excessive

07:17

permissions on his computer and gets an

07:19

email it clicks on a link and install

07:21

some software

07:22

there could be malicious software that's

07:24

being installed on his computer as a

07:25

result of his actions and getting a

07:27

bogus email would be an example of a

07:29

phishing attack and if Bob falls for it

07:31

the malware on his system could be

07:33

ransomware which you can require some

07:35

money or ransom to be paid for his

07:37

system to be unlocked or it could just

07:39

be a masquerade that's masquerading some

07:41

other attack that's currently in play so

07:44

maybe the attacker is using several

07:45

machines on the inside as misdirection

07:47

while they're going after some even more

07:49

critical data somewhere else so

07:51

continual training before during and

07:52

after for everyone involved is another

07:54

huge part in keeping our networks and

07:56

systems secure in this video we've

07:59

talked about the concept that the world

08:00

of cyber security is really important it

08:02

is definitely learn about and it is in

08:04

demand and in the next nugget we'll take

08:07

a look at some job roles in the world of

08:09

cyber security and some of those

08:10

responsibilities so I look forward to

08:12

seeing you in the very next video

08:13

meanwhile I hope this has been

08:15

informative for you and I'd like to

08:17

thank you for viewing