Modern computer systems are almost universally connected, which creates wider attack surfaces well beyond code to users, hardware, and more. Securing systems is thus a fundamental skill for modern software engineers.

This course is a comprehensive introduction to cyber security best practices. You’ll start with an overview of common threats and vulnerabilities, as well as high-level concepts like privilege, integrity, logging, and mediation. With these concepts in mind, you’ll then learn common protection mechanisms and defense strategies from endpoint protection to firewalls, gateways, and proxy servers. Next, you’ll learn monitoring and detection techniques, alerts, and event management. Finally, when you detect a threat, you’ll know how to respond with support tickets, data preservation, and change management.

By the end of this course, you’ll have a better understanding of modern cyber security practices and a clear roadmap to implementing these as a developer.

Cyber Security Best Practices for Developers

## Overview

Users are on the front line of protecting an organization. It’s often not by technical means that an attacker illicitly gains sensitive info, access to systems, and footholds on a protected network. They instead rely on the age-old method of social engineering , where the user is tricked into performing an action. The user is manipulated, often by exploiting trust and fear so that they don’t think before acting. Our goal is to get users to think first, especially when it comes to:


- Clicking links

- Opening attachments 

- Disclosing information

## Training employees  

Educating employees on social engineering attacks and techniques can take several forms, including:

- Giving presentations to different groups.

- Communications sent by leadership.

- Sharing news stories of victims affected by cyber attacks.

- Inviting law enforcement representatives to provide awareness training to groups.


# Overview

Users are on the front line of protecting an organization. It’s often not by technical means that an attacker illicitly gains sensitive info, access to systems, and footholds on a protected network. They instead rely on the age-old method of social engineering , where the user is tricked into performing an action. The user is manipulated, often by exploiting trust and fear so that they don’t think before acting. Our goal is to get users to think first, especially when it comes to:


- Clicking links

- Opening attachments 

- Disclosing information

# Training employees  

Educating employees on social engineering attacks and techniques can take several forms, including:

- Giving presentations to different groups.

- Communications sent by leadership.

- Sharing news stories of victims affected by cyber attacks.

- Inviting law enforcement representatives to provide awareness training to groups.


Learn how an organization can educate its employees to make them aware of security threats.


Introduction

Basics of Security

Detect

Protect

Respond

Conclusion

User Awareness and Education

Overview

Training employees