WEBVTT 00:00.480 --> 00:08.250 Cyber security is a vast and diverse field, whether you are setting up a firewall or creating a password 00:08.250 --> 00:08.820 policy. 00:09.120 --> 00:18.440 Your actions impacts all levels of an organization from its technicians to and helpdesk to the cyber 00:18.660 --> 00:25.020 security, and also affects every piece of technology, you know, organization, mobile phones, servers 00:25.020 --> 00:29.730 and even devices like industrial control systems. 00:30.150 --> 00:37.170 If failed, this expense expensive and DB can be a little intimidating when you first enter. 00:37.170 --> 00:43.470 It is especially true if you are trying to learn about cyber security without entering the field. 00:43.980 --> 00:51.930 For example, you might be an I.T. department head who wants to learn more so you can better protect 00:51.930 --> 00:52.850 your organization. 00:53.130 --> 00:59.060 So these course start slow, so we will talk about it. 00:59.100 --> 00:59.550 So it was. 00:59.550 --> 01:05.010 Security is and isn't as real as a difference between White Hat and Black Hat hackers. 01:05.850 --> 01:07.410 What is cybersecurity? 01:09.200 --> 01:17.600 As at its core, cybersecurity has one driving purpose to identify cyber threats in an organization 01:17.780 --> 01:26.630 calculated risk to, uh, to to, uh, related to DOS threats and handle those threats are appropriately. 01:27.080 --> 01:34.340 Not every threat that a company experiences is unusual that cyber security deals with directly, for 01:34.340 --> 01:40.190 example, pandemics or physical damage to a building caused by a tornado or food, of course. 01:40.730 --> 01:43.520 In general, cyber security uses. 01:45.410 --> 01:51.990 I see a thread model to determine which traits are under its previous. 01:53.030 --> 01:54.130 Uh, so. 01:56.510 --> 02:04.070 Some experts debate that, uh, merits of adding elements of a traditional trade to contend with the 02:04.070 --> 02:06.980 new technologies or priorities in cybersecurity. 02:07.610 --> 02:16.520 So on, one element of an added is non-repudiation, so which is the idea that when a person or entity 02:16.820 --> 02:22.640 does something, there must be specific evidence tying them to that action. 02:22.670 --> 02:25.940 So it's impossible for them to deny they did it. 02:26.790 --> 02:28.280 Cybersecurity and privacy. 02:29.370 --> 02:35.610 In recent years, there has been an impressive on the relationship between cybersecurity and privacy 02:36.180 --> 02:37.200 in this situation. 02:37.230 --> 02:42.960 Privacy means the rights and abilities of a person to control how information about them is stored, 02:42.960 --> 02:44.310 shared and used. 02:44.910 --> 02:52.170 Although the topic of privacy extends beyond cyber security, Liberty Security still plays a huge role 02:52.500 --> 02:57.660 in ensuring that an individual's data is secured against malicious jewels. 02:58.110 --> 03:05.340 Their security is also responsible for many of the controls that allow a company to audit its data laws, 03:05.700 --> 03:10.830 ensuring that it will use any necessary rules or regulations going forward. 03:11.100 --> 03:19.110 The protection of a user user privacy will likely become an increasingly integral part of the cybersecurity 03:19.110 --> 03:19.560 field. 03:20.670 --> 03:24.900 What cyber security isn't in a field? 03:24.900 --> 03:31.290 As a large cybersecurity, you are bound to encounter a field distorted ideas about its scope to mitigate 03:31.290 --> 03:32.880 these misconceptions. 03:33.030 --> 03:40.830 It's best to discuss what cyber security isn't doing, so will help to find the field and what it actually 03:40.830 --> 03:42.930 means to do cyber security. 03:43.900 --> 03:51.570 First, cybersecurity isn't synonymous with hacking, so the media would have you believe that all cyber 03:51.570 --> 03:57.570 security professionals do is click away at a keyboard trying to break into system. 03:57.970 --> 04:03.570 Although penetration testing the act of attempting to break into a system you are authorized to attack, 04:03.930 --> 04:11.870 such as your own or clients to discover vulnerabilities from an attacker perspective is a part of cybersecurity. 04:12.330 --> 04:14.640 It's part one section of the field. 04:15.120 --> 04:22.320 So able rarity is a flaw in the system, including how it's set up or how people use it. 04:23.430 --> 04:30.210 For example, having an error in a systems code can cause a vulnerability so attackers create exploits 04:30.210 --> 04:32.160 to take advantage of vulnerabilities. 04:32.520 --> 04:39.540 But just because you don't know how to execute and exploit, using a flaw in a comfortable memory doesn't 04:39.540 --> 04:44.670 mean you can't be an expert in setting up and maintaining firewalls. 04:45.030 --> 04:53.310 So this means that you don't need to understand how every hacking tool works or exactly what the latest 04:53.310 --> 04:57.720 exploit does to contribute to the cybersecurity industry. 04:58.440 --> 05:01.080 Second, cybersecurity isn't such an flipping. 05:02.530 --> 05:07.270 So some people use the term such sleeping to describe what they think. 05:07.450 --> 05:14.740 System engineers or other I.T. professionals do, they just flip switches or configure systems without 05:14.740 --> 05:19.240 understanding the underlying processes that make the system work? 05:19.600 --> 05:26.130 It's true that configuring a system to be secure is vitally important to cybersecurity, but securing 05:26.140 --> 05:30.040 a system can't necessarily be done by following a checklist. 05:30.490 --> 05:39.360 It requires looking at the entire system, noting how every component interacts importantly with the 05:39.370 --> 05:45.520 other components, but also with the other systems to fully understand how to secure a system. 05:45.970 --> 05:53.590 In addition, professionals need deliberation and critical thinking skills to know how to secure a system 05:53.710 --> 05:57.670 in situations where it's impossible to apply best practices. 05:58.180 --> 06:01.750 Third, the cybersecurity doesn't only require technical skills. 06:03.030 --> 06:08.790 Just as important as technical knowledge is the ability to translate that information to tips and resources 06:08.790 --> 06:14.250 that everyone can understand them professionals give presentations or write reports. 06:14.810 --> 06:21.300 Typekit security professionals work with every department in an organization, which means their interpersonal 06:21.450 --> 06:23.850 communication skills are essential. 06:24.300 --> 06:30.600 The only way you or your organization will become more secure is if everyone understands their role 06:30.600 --> 06:35.580 in maintaining security, which means you must communicate that role effectively.