From the course: ISC2 Certified Information Systems Security Professional (CISSP) (2024) Cert Prep
Personnel security
From the course: ISC2 Certified Information Systems Security Professional (CISSP) (2024) Cert Prep
Personnel security
- [Instructor] Personnel can often be the weakest link in the security chain. So personnel security should be an important part of the foundation of any cybersecurity program. It's very important to have strong security policies that clearly outline expectations for individual behavior, as well as the consequences for failing to comply with policy. Personnel security programs should be built upon educating employees about these policies and their role in protecting the enterprise. As you build your personnel security program, you should design explicit procedures that describe how you will handle violations of security policy. Now, this is often a tricky situation that requires coordination between cybersecurity teams, managers throughout the organization, your legal team and your human resources department. You should never approach an individual about a policy violation without first consulting with management, you might wind up causing more trouble than you expected. One of the specific issues that you should address is the use of personal resources on company premises and with corporate data. You'll want to clearly identify whether it's appropriate to use personal computers, personal email or cloud service accounts and personal mobile devices for these purposes. If you allow the use of personal resources, you should have procedures for vetting those uses to ensure that they comply with security policies and remain in compliance over time. You'll also need to arm your staff with the knowledge that they need to protect themselves against both technical and non-technical risks, including social engineering attempts. Education is the best preventive tool to protect your team from falling victim to these attacks. Also, you have to remember that not every employee has your organization's best interests at heart. Insider attacks are a source of many very damaging security breaches. When someone violates your trust, the impact can be devastating. Verizon recently released a report analyzing a year's worth of data breaches around the world, and they found that a quarter of all security breaches were the result of an insider threat. You can protect your organization from the insider threat by performing strong and consistent background checks of new employees. I'll talk more about those later in this course. You can also implement careful monitoring processes, provide managers with training to help them identify disgruntled employees and intervene before something bad happens. And by deploying data loss prevention technology that watches for unauthorized data exfiltration. Protecting against personnel security threats can be very tricky, but it's an important component of any security program.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
Legal and compliance risks2m 19s
-
(Locked)
Data privacy4m
-
(Locked)
General Data Protection Regulation (GDPR)7m 12s
-
(Locked)
California privacy law5m 56s
-
(Locked)
National data privacy laws2m 48s
-
(Locked)
Computer crimes1m 49s
-
(Locked)
Software licensing2m 54s
-
(Locked)
Intellectual property4m 22s
-
(Locked)
Import and export controls1m 42s
-
(Locked)
Data breaches2m 16s
-
(Locked)
Ethics1m 32s
-
-
-
Risk analysis, assessment, and scope6m 36s
-
(Locked)
Quantitative risk assessment6m 10s
-
(Locked)
Risk treatment6m
-
(Locked)
Security control selection and implementation5m 17s
-
(Locked)
Continuous monitoring, measurement, and tuning4m 52s
-
(Locked)
Risk management frameworks3m 4s
-
(Locked)
Risk visibility and reporting5m 4s
-
-
-
What is the cloud?3m 53s
-
(Locked)
Cloud computing roles2m 35s
-
(Locked)
Drivers for cloud computing3m 17s
-
(Locked)
Security service providers2m 38s
-
(Locked)
Multitenant computing2m 15s
-
(Locked)
Virtualization4m 48s
-
(Locked)
Desktop and application virtualization2m 38s
-
(Locked)
Cloud compute resources7m 52s
-
(Locked)
Containerization1m 58s
-
(Locked)
Cloud activities and the cloud reference architecture2m 48s
-
(Locked)
Cloud deployment models2m 45s
-
(Locked)
Cloud service categories4m 47s
-
(Locked)
Edge and fog computing1m 46s
-
-
-
Understanding encryption2m 49s
-
(Locked)
Symmetric and asymmetric cryptography4m 18s
-
(Locked)
Goals of cryptography3m 47s
-
(Locked)
Codes and ciphers3m 5s
-
(Locked)
Cryptographic math2m 38s
-
(Locked)
Choosing encryption algorithms3m 27s
-
(Locked)
The perfect encryption algorithm3m 21s
-
(Locked)
The cryptographic lifecycle2m 33s
-
-
-
Trust models2m 52s
-
(Locked)
PKI and digital certificates4m 5s
-
(Locked)
Hash functions7m 38s
-
(Locked)
Digital signatures3m 51s
-
(Locked)
Digital signature standard1m 39s
-
(Locked)
Create a digital certificate4m 55s
-
(Locked)
Revoke a digital certificate1m 41s
-
(Locked)
Certificate stapling2m 29s
-
(Locked)
Certificate authorities6m 13s
-
(Locked)
Certificate subjects3m 35s
-
(Locked)
Certificate types2m 55s
-
(Locked)
Certificate formats2m 30s
-
-
-
Public and private addressing5m 51s
-
(Locked)
Subnetting3m 3s
-
(Locked)
Security zones3m 52s
-
(Locked)
Isolating sensitive systems2m 59s
-
(Locked)
VLANs and logical segmentation4m 37s
-
(Locked)
Security device placement6m 17s
-
(Locked)
Software defined networking (SDN)4m 58s
-
(Locked)
Transmission media2m 50s
-
(Locked)
Cloud networking2m 30s
-
(Locked)
Zero trust and SASE5m 32s
-
-
-
(Locked)
Routers, switches, and bridges3m 6s
-
(Locked)
Network topologies3m 4s
-
(Locked)
Transport architecture2m 52s
-
(Locked)
Firewalls6m 7s
-
(Locked)
Proxy servers2m 41s
-
(Locked)
Load balancers4m 9s
-
(Locked)
VPNs and VPN concentrators4m 29s
-
(Locked)
Network intrusion detection and prevention5m 1s
-
(Locked)
Protocol analyzers8m 57s
-
(Locked)
Unified threat management1m 57s
-
(Locked)
Content distribution networks4m 4s
-
(Locked)
-
-
(Locked)
Restricting network access2m 8s
-
(Locked)
Network access control5m 33s
-
(Locked)
Firewall rule management4m 9s
-
(Locked)
Router configuration security4m 5s
-
(Locked)
Switch configuration security3m 42s
-
(Locked)
Maintaining network availability2m 34s
-
(Locked)
Network monitoring2m 30s
-
(Locked)
Firewall and network logs4m 1s
-
(Locked)
Network performance metrics2m 59s
-
(Locked)
SNMP2m 54s
-
(Locked)
Isolating sensitive systems1m 58s
-
(Locked)
Deception technologies2m 51s
-
(Locked)
Network support2m 4s
-
(Locked)
-
-
(Locked)
Mobile connection methods2m 36s
-
(Locked)
Mobile device security2m 27s
-
(Locked)
Mobile device management6m 28s
-
(Locked)
Mobile device tracking3m 5s
-
(Locked)
Mobile application security3m 54s
-
(Locked)
Mobile security enforcement3m 54s
-
(Locked)
Bring your own device (BYOD)4m 35s
-
(Locked)
Mobile deployment models2m 54s
-
(Locked)
-
-
(Locked)
Authentication factors3m 26s
-
(Locked)
Multifactor authentication2m 35s
-
(Locked)
Something you have4m 23s
-
(Locked)
Password authentication protocols3m 10s
-
(Locked)
Single sign-on and federation3m 9s
-
(Locked)
RADIUS2m 18s
-
(Locked)
Kerberos and LDAP5m 18s
-
(Locked)
SAML2m 35s
-
(Locked)
Identity as a service (IDaaS)2m 50s
-
(Locked)
OAuth and OpenID Connect2m 55s
-
(Locked)
Certificate-based authentication5m 25s
-
(Locked)
Passwordless authentication3m 23s
-
(Locked)
-
-
(Locked)
Code review2m 31s
-
(Locked)
Code tests4m 8s
-
(Locked)
Fuzz testing6m 48s
-
(Locked)
Interface testing3m 42s
-
(Locked)
Misuse case testing2m 21s
-
(Locked)
Test coverage analysis2m 28s
-
(Locked)
Code repositories6m 57s
-
(Locked)
Third-party code3m 38s
-
(Locked)
Software risk analysis and mitigation2m 52s
-
(Locked)
-
-
(Locked)
Conducting investigations3m 50s
-
(Locked)
Evidence types3m 28s
-
(Locked)
Introduction to forensics3m 21s
-
(Locked)
System and file forensics4m 26s
-
(Locked)
Network forensics4m 1s
-
(Locked)
Software forensics4m 25s
-
(Locked)
Mobile device forensics1m 10s
-
(Locked)
Embedded device forensics2m 30s
-
(Locked)
Chain of custody1m 50s
-
(Locked)
Reporting and documenting incidents3m 58s
-
(Locked)
Electronic discovery (eDiscovery)3m 3s
-
(Locked)
-
-
(Locked)
Build an incident response program4m 13s
-
(Locked)
Creating an incident response team2m 15s
-
(Locked)
Incident communications plan2m 42s
-
(Locked)
Incident identification4m 26s
-
(Locked)
Escalation and notification2m 29s
-
(Locked)
Mitigation2m 22s
-
(Locked)
Containment techniques3m
-
(Locked)
Incident eradication and recovery5m 28s
-
(Locked)
Validation2m 24s
-
(Locked)
Post-incident activities3m 50s
-
(Locked)
-
-
(Locked)
OWASP top ten4m 45s
-
(Locked)
Application security4m 3s
-
(Locked)
Preventing SQL injection4m 25s
-
(Locked)
Understanding cross-site scripting3m 17s
-
(Locked)
Request forgery4m 8s
-
(Locked)
Defending against directory traversal3m 4s
-
(Locked)
Overflow attacks3m 21s
-
(Locked)
Explaining cookies and attachments4m 7s
-
(Locked)
Session hijacking4m 8s
-
(Locked)
Code execution attacks2m 43s
-
(Locked)
Privilege escalation1m 56s
-
(Locked)
Driver manipulation2m 16s
-
(Locked)
Memory vulnerabilities3m 34s
-
(Locked)
Race condition vulnerabilities2m 13s
-
(Locked)
-
-
(Locked)
Input validation2m 37s
-
(Locked)
Parameterized queries3m
-
(Locked)
Authentication/session management issues1m 49s
-
(Locked)
Output encoding3m 13s
-
(Locked)
Error and exception handling3m
-
(Locked)
Code signing2m 8s
-
(Locked)
Database security3m 53s
-
(Locked)
Data de-identification2m 44s
-
(Locked)
Data obfuscation2m 12s
-
(Locked)