Fundamentals

Security Program Basics
Security Program Basics
Security Awareness Training
Security Monitoring and Troubleshooting
Vulnerability Risk Management
Vulnerabilities, Exploits, and Threats
Vulnerability Management and Scanning
Vulnerability Management Program Framework
Patch Management: Benefits and Best Practices
Threat Detection and Response
Incident Response Plan
Incident Response Plan
Threat Detection
User and Entity Behavior Analytics (UEBA)
SIEM
Network Traffic Analysis
Security Operations Center (SOC)
Gartner Magic Quadrant for SIEM
The MITRE ATT&CK Framework
Security Automation and Orchestration
Security Orchestration
Security Automation
ChatOps
Web Application Security
Web Application Security and Scanning: Explanation and Deep Dive
Web Application Security Testing
Web Application Vulnerabilities
Application Security Testing Programs
DevSecOps: Definition and Deep Dive
Dynamic Application Security Testing (DAST)
Software Development Life Cycle (SDLC)
Web Application Firewall (WAF)
Runtime Application Self-Protection (RASP)
Cross-Site Request Forgery (CSRF, XSRF)
Continuous Integration and Continuous Delivery or Continuous Deployment (CI/CD)
Offensive Security
Penetration Testing
Penetration Testing Tools
Deception Technology
What are honeypots?
Cloud Security
Cloud Security
Cloud Computing Security: Cloud Network Security Best Practices
Azure Cloud Security Best Practices
AWS Cloud Security
Identity and Access Management (IAM)
Cloud Infrastructure Entitlement Management (CIEM)
Governance, Risk, and Compliance
Information Security Risk Management
Compliance and Regulatory Frameworks
SOC Reports
General Data Protection Regulation (GDPR)
NYDFS Cybersecurity Regulation
NIST Frameworks
CIS Critical Security Controls
Types of Attacks
Common Types of Cybersecurity Attacks
Phishing Attacks: A Deep Dive with Prevention Tips
SQL Injection Attacks (SQLi)
Cross-Site Scripting (XSS) Explained and Preventing XSS Attacks
Man-in-the-Middle (MITM) Attacks
Malware Attacks: Examined and Best Practices
Denial-of-Service Attacks
Spear Phishing Attacks
Whaling Phishing Attacks
Brute-Force and Dictionary Attacks
Spoofing Attacks