CSX Fundamentals Workshop

Transcription

1 CSX Fundamentals Workshop December 2017 Final registration 1 December 2017 Offered by In association with ISACA Athens Chapter has been awarded four times as Best Large Chapter in Europe/Africa (2009, 2012, 2013, 2014)

2 Contents 1. Introduction 1. Introduction 1 2. Scope 1 3. Who should attend? 1 4. Why attend 2 5. Where? When? Who will be the Trainer? 2 6. What will you learn? 2 7. Course Summary 3 8. Registration Process 4 9. Frequently Asked Questions Travelling Information 6 Cybersecurity is a growing and rapidly changing field, and it is crucial that the central concepts that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies (IT). Cybersecurity Nexus (CSX) is a new platform for security knowledge and a professional development and certification program in cybersecurity. Launched by ISACA, CSX provides IT security and cybersecurity professionals with the knowledge and technical skills to defend their organization from security breaches and cyber-attacks. A key part of Cybersecurity Nexus is its training workshops and innovative certification tracks. ISACA International notes that while other cyber security certifications assess knowledge in a question-and-answer format, CSX training and exams are conducted in a live, virtual cyber lab environment and test on whether an individual has the skills and technical savvy to do the job. The Certification Tracks CSX certifications are designed to test a candidate s ability to perform tasks of various degrees of complexity within 5 cybersecurity areas: identify protect detect respond recover. This new cybersecurity path begins with the CSX Fundamentals Certificate, which offers a knowledge-based credential on the introductory concepts that frame and define the standards, guidelines and practices of the industry. It also provides insight into the importance of cybersecurity and the integral role of cybersecurity professionals. The next 4 levels of CSX Certifications are based on the knowledge and concepts covered in the CSX Fundamentals Certificate but test competencies in scenarios that become more complex and sophisticated the higher the level. The CSX Fundamentals workshop is offered for the second time in Greece, after the quick sold out of the first course which was held, last November. The course is offered exclusively in Greece by ISACA Athens Chapter with the support of the Hellenic American Union. 2. Scope of the course This workshop is geared toward IT security professionals new to cyber security, recent graduates in IT-relevant fields, and IT professionals looking for a career change to cybersecurity. It prepares you for the CSX Fundamentals Exam covering the foundational areas of cyber security: Cybersecurity objectives and roles The difference between cybersecurity and information security The Principles of Cybersecurity Information Security within Lifecycle management Risks and Vulnerabilities Incident Response 2 ISACA Athens Chapter CSX Fundamentals Workshops

3 3. Who should attend? IT security professionals new to cybersecurity, IT oriented graduates and those IT professionals looking for a career change to cybersecurity. 4. Why attend? By the end of the course you will: Understand basic cybersecurity concepts and definitions Define network security architecture concepts Recognize malware analysis concepts and methodology Identify computer network defense (CND) and vulnerability assessment tools, including open source tools and their capabilities Explain network systems management principles, models, methods, and tools Distinguish system and application security threats and vulnerabilities Classify types of incidents (categories, responses, and timelines for responses) Outline disaster recovery and business continuity planning Comprehend incident response and handling methodologies Understand security event correlation tools, and how different file types can be used for a typical behavior Be aware of the basic concepts, practices, tools, tactics, techniques, and procedures for processing digital forensic data Recognize new and emerging information technology and information security technologies 5. Where? When? Who will be the Trainer? The course will be held at the Hellenic American Union Conference Center, Massalias 22, Athens, on 8-9 December 2017 (Friday, Saturday), from 9.00 to Course leader: Iro Hatzopoulou, CISA, HISP, CCSK, ISEB BCM, CSA STAR Auditor, P2, CSX (F) Iro has graduated from the Aristotle University of Thessaloniki where she participated in projects, at both under- and post- graduate level, of molecular modeling of materials using computer programs. Holds two Master s Degrees the first one in Physics of Materials and the second in Informatics with specialization on Evaluation of Security in Cloud Computing. During her professional carrier she has been employed by some IT oriented companies as IT professional member of the IT Dpt, as Network Responsible, as Security officer and others. Apart from the above, since 2001 she has been an Instructor of various IT related courses. From 2004 till today, she has been a member of the International Certification Body TUV AUSTRIA HELLAS, subsidiary of the TUV AUSTRIA group. She is an active Senior auditor for Management Audits in the fields of Information Security, IT Service Management, Business Continuity, Quality and Quality in Education and an instructor in various specialized topics. ISACA Athens Chapter CSX Fundamentals Workshops 3

4 6. What will you learn? Cybersecurity introduction and overview Cybersecurity architecture principles Cybersecurity definition Objectives of cybersecurity Key business and technology factors Cybersecurity roles and governance Domains of cybersecurity Cybersecurity concepts Risk management terms, concepts and frameworks Common attack types and vectors General process and attributes of cyber attacks Malware Framework and guidance for policies and procedures Cybersecurity control processes Security architecture Perimeter security concepts Security architectures and frameworks The OSI model and TCP/IP communication protocol Defense in depth Firewall concepts and implementations Isolation and segmentation Intrusion detection and prevention systems Antivirus and anti-malware Encryption fundamentals, techniques and applications Security of networks, systems, applications and data Risk analysis, risk assessments and risk mitigation strategies Scanning, assessment and management of vulnerabilities Penetration testing Network management and configuration Port numbers and protocols Risk and controls for remote and wireless access System hardening and virtualization Specialized systems Command line knowledge and tools System development life cycle (SDLC) OWASP top ten application security risk Data classification process and requirements Incident response Distinctions between events and incidents Incident categories and types Security event management Key elements of incident response plans Legal requirements of investigation and evidence preservation Requirements for forensic investigations Business continuity planning and disaster recovery The security implications of the adoption of emerging technologies Trends in the current threat landscape Characteristics and targets of advanced persistent threats (APTs) Mobile device vulnerabilities, threats and risk BYOD and consumerization of IT and mobile devices Risk and benefits of cloud and digital collaboration 4 ISACA Athens Chapter CSX Fundamentals Workshops

5 7. Course Summary Prerequisites Fundamental concepts of IT Security, IT academic background CPEs 16 Languages Greek Planning 8-9 December 2017 (Friday, Saturday), Cost STANDARD RATE 350 per participant for ISACA member 450 per participant for non-isaca member Unemployed ISACA members: 200 per participant Special price sponsored by Isaca Athens Chapter Cost includes course material Cost does not include exam fees This program is subsidized by LAEK/OAED 0,24% (for participants from Greek companies only) Registration fees to be paid until 1 December ISACA Athens Chapter CSX Fundamentals Workshops 5

6 8. Registration Process Step 1 Step 2 Step 3 Fill in the registration form at the end of this document and send it to Hellenic American Union by following the respective guidelines below the registration form. Hellenic American Union will send a registration confirmation receipt via . Send payment amount to Hellenic American Union by following the payment details on the registration form at the end of this document. For bank transfer information please contact the Hellenic American Union. We will send you bank transfer information once we receive your registration form. Please always quote the invoice number which you will receive once you have registered, or alternatively please quote your company s name or the delegates name in the transfer instructions. Step 4 The amount to be credited should be net of commissions. Any commissions/fees for bank deposits or transfers are payable by participants. You will receive a course registration invoice from Hellenic American Union after we receive your payment. Payments: All registrations & payments must be received by the Hellenic American Union the latest by 1 December Invoices are issued by the Hellenic American Union. Cancellations/Substitutions must be made via and sent to training@hau.gr. A full refund can be given for cancellation requests received in writing 10 working days before the course commencement. No refund will be given for cancellation requests after this deadline. A replacement is always welcome at no extra cost! 6 ISACA Athens Chapter CSX Fundamentals Workshops

7 9. Frequently Asked Questions When is the CSX Fundamentals exam? Is there one combined registration process for the CSX exam and the ISACA Athens Chapter s CSX Fundamentals Course? Is attending this ISACA CSX Fundamentals sufficient enough for me to pass this exam successfully The Cybersecurity Fundamentals Certificate exam is available online, at your convenience. Simply schedule the date and time that works best for you and your exam will be remotely proctored. No, there are two separate registration processes because the exam is administered by ISACA International. One registration combining both CSX exam fees and CSX Fundamentals course fees is not possible. Yes What is the date of the next CSX Fundamentals course? Are there any special fees for unemployed members of ISACA Athens Chapter for this course? ISACA Athens Chapter will only run 2 CSX Fundamental Courses each year. Next course dates will be announced after the successful completion of this course. Yes, please refer to the registration form. ISACA Athens Chapter CSX Fundamentals Workshops 7

8 10. Travel Information Accommodation - Recommended hotel For those travelling to Athens or from abroad and need accommodation, we recommend Titania hotel ( In order to take advantage of special rates, please contact Ms Vasiliki Zafiri ( , vzafiri@hau.gr) at the Hellenic American Union. Transportation arrangements We highly recommend using our excellent Athens public transportation (metro). You need to validate your paper ticket at the beginning of your journey. Intergrated tickets (as well as Metro airport tickets) are valid for 90 minutes so you don t need to validate it again if you use another mode of transportation anywhere in Athens within 90 minutes of the first validation. Ticket price is 8 (one way) or 14 (for 2 journeys return ticket). One way ticket for 2 persons is 14 and for 3 persons is 20. Getting to/from the Athens International Airport and the city center, located about 36 km east can be achieved via metro: Take the Blue line (line 3 direction Anthoupoli ) of the metro from Athens International Airport and get off at Syntagma station. Trains run every 30 minutes, 7 days a week from 6:30 a.m. to 11:30 p.m. The trip from/to the Airport to Syntagma metro station (Athens center) lasts 40 minutes. See the Metro timetable to the airport here and also an Athens airport railway station map. For ticket info see Athens Transport tickets and cards. 8 ISACA Athens Chapter CSX Fundamentals Workshops

9 From Syntagma metro station you can: a. either change and take the Red line (line 2 direction Anthoupoli) in order to get off at next stop, Panepistimio metro station (exit National Library) and walk approximately 4-5 minutes towards Omonia square to Titania Hotel (it is just on your right hand side). b. Walk from Syntagma Square to Titania Hotel through Panepistimiou street (it is approximately minutes walk) Red route: from metro Syntagma Station (circled A) and Panepistimio Station (circle) to Hotel (B) and venue (C) Blue route: alternative route from Hotel (B) to venue (C) On last evening at the end of the Exam Preparation Course (at 17:00), you can take the metro from Syntagma directly to the airport. Alternatives: a. By Bus (map: From the Airport take Bus Line X95 Syntagma Athens Airport Express (Orange Line). From Syntagma Square you can either take the Metro (see above) or walk to Titania Hotel. You can also take a bus (most of them are passing by in front of the hotel, while some stop right in front of the hotel). b. By Taxi (Flat fare: 35 Euros) c. By Car (36 km, minutes depending however on traffic) Via Attiki Odos, route 6/Ε94, 31,6 km, 35 min Via Mesogeion Avenue, 20,8 km, 34 min Via Route 64, 26 km, 34 min ISACA Athens Chapter CSX Fundamentals Workshops 9

10 Registration Form I wish to register for the CSX Fundamentals Workshop, 8-9 December Please send this registration form to Hellenic American Union fax nr. (30) , or at training@hau.gr. Registration Fees Isaca Members Non Members Unemployed ISACA members Special price sponsored by Isaca Athens Chapter 350 q 450 q 200 q q I wish to register the workshop for the 0,24 OAED-LAEK subsidy program In order to guarantee a place on the course and the exams, delegates are kindly requested to register until the 1st December PERSONAL DETAILS (Please print clearly) (*mandatory fields for individual registrations only) Family Name First Name Company Position/Title Home address* (individual/personal registrations only) City* Postal Code* Tel* Fax Ε-mail Tax ID Nr./Tax Registration Office* (for individual registrations only) INVOICE DETAILS (all fields are mandatory for company registrations) COMPANY NAME Area of Business Address City Postal Code Tel Fax Tax ID Nr. Tax Registration Office I/We understand and accept the registration and cancellation policies and procedures, and the protection of personal and credit card data policy. Signature/Company stamp Date PAYMENT DETAILS Payments are made to the Hellenic American Union immediately upon registration. Once the Hellenic American Union receives the registration form, we will send you confirmation and payment transfer information. PAYMENT METHOD q Please invoice my company ** For bank transfer information please contact the Hellenic American Union. We will send you bank transfer information Bank Transfer** q VISA q MASTERCARD q once we receive your registration form. Please always quote the invoice number which you will receive once you have registered, or alternatively please quote your company s name or the delegates name in the transfer instructions. An invoice will be sent upon receipt of payment. CANCELLATION POLICY A full refund will be given for cancellations requests received in writing up to 10 working days prior the course starts. Cancellations received within less than 10 working days before the course will not be refunded. A replacement is always welcome. Disclaimer: ISACA Athens Chapter and Hellenic American Union reserve the right to change or cancel any part of the published program due to unforeseen circumstances. In case the event is cancelled, registration fees will be returned in full to the delegates. The Hellenic American Union collects and uses personal information in order to communicate with the members of its public, to provide educational and cultural programs and services, and to improve the quality of services that it offers. The information we have requested in this form will be maintained in digital and/or physical form and used only for the purposes described above. You have the right to reasonable access to the personal information we have on you, to request a copy of this information, and to correct it if inaccurate. To find out more, contact the Hellenic American Union at privacy@hau.gr. In association with * * A recognized Center for Lifelong Learning (ΚεΔιΒιΜ2) that has been granted a license of operation by the National Organization for the Certification of Qualifications and Vocational Guidance (EOPPEP)

11 Information ISACA Athens Chapter For membership please contact: For certifications please contact: LinkedIn Group: ISACA Athens Chapter Twitter: isaca_gr Facebook: ISACA Athens Chapter For further information about the preparation course, please contact: Ηellenic American Union Tel: , Fax: , or ISACA Athens Chapter