In this course, you will learn how security analysts address system vulnerabilities in order to reduce organizational risk. You will first learn about vulnerabilities, their characteristics, as well as their dynamic lifecycle. You will then explore the ways analysts assess vulnerabilities, including reviewing and administering scanning tools and utilities. You will learn how to measure the risks associated with discovered vulnerabilities. Lastly, you will review ways to communicate risk in order to plan remediation and mitigation activities.
Overview
Syllabus
- Introduction to Vulnerability and Risk
- Get your first look at vulnerability assessment and where you’ll go throughout this course.
- Understanding Vulnerabilities
- Dive deeper into what vulnerabilities are, common types, and their relation to risk.
- Assessing Vulnerabilities
- Learn how to perform vulnerability assessments and some of the tools to do so.
- Determining Risk and Business Impact
- Determining the risks and impact to the business of the identified vulnerabilities, as well as considering how to mitigate them.
- Managing and Mitigating Risk
- Finalize your vulnerability assessment with targeted summaries by audience and strategic guidance.
- Project: Juice Shop Vulnerabilities Report
- Dive back into Juice Shop, this time to assess vulnerabilities and reduce risks related to the insecure application.
Taught by
Richard Phung
