GIAC Information Security Fundamentals (GISF)

SEC301 assumes only the most basic knowledge of computers.

BUSINESS TAKEAWAYS:

This course will help your organization:

• Understand the fundamentals of risk management, security policy, and authentication/authorization/accountability (AAA)
• Communicate a wide variety of attacks including social engineering, drive-by downloads, watering hole attacks, lateral movement, and more
• Secure your organization's assets through the application of the Principles of Least Privilege
• Avoid being the next mega-breach headline story on the 6 o'clock news

You Will Be Able To

• Communicate with confidence regarding information security topics, terms, and concepts
• Understand and apply the Principles of Least Privilege
• Understand and apply the Confidentiality, Integrity, and Availability (CIA) for prioritization of critical security resources
• Build better passwords that are more secure while also being easier to remember and type
• Grasp basic cryptographic principles, processes, procedures, and applications
• Understand how a computer works
• Understand computer network basics
• Have a fundamental grasp of any number of technical acronyms: TCP/IP, IP, TCP, UDP, MAC, ARP, NAT, ICMP, and DNS, and the list goes on.
• Utilize built-in Windows tools to see your network settings
• Recognize and be able to discuss various security technologies, including anti-malware, firewalls, intrusion detection systems, sniffers, ethical hacking, active defense, and threat hunting.
• Understand wireless technologies including WiFi, Bluetooth, mobile phones and the Internet of Things (IoT)
• Explain a variety of frequent attacks such as social engineering, drive-by downloads, watering hole attacks, lateral movement, and other attacks
• Understand different types of malware
• Understand browser security and the privacy issues associated with web browsing
• Explain system hardening
• Discuss system patching
• Understand virtual machines and cloud computing
• Understand backups and create a backup plan for your personal life that virtually guarantees you never have to pay ransom to access your data

• SEC301 does not have prerequisites.
• SEC301 assumes only the most basic knowledge of computers.
• SEC301 makes no assumptions regarding prior security knowledge.

To determine if the SANS SEC301 course is right for you, ask yourself five simple questions:

• Are you new to cyber security and in need of an introduction to the fundamentals?
• Are you bombarded with complex technical security terms that you don't understand?
• Do you need to be conversant in basic security concepts, principles, and terms, but do not need "deep in the weeds" detail?
• Have you decided to make a career change to take advantage of the job opportunities in cyber security and need formal training/certification?
• Are you a manager who lays awake at night worrying that your company may be the next mega-breach headline story on the 6 o'clock news?

If you answer yes to any of these questions, the SEC301: Introduction to Cyber Security training course is for you. Jump-start your security knowledge by receiving insight and instruction from real-world security experts on critical introductory topics that are fundamental to cyber security. 

This five-day comprehensive course covers everything from core terminology to the how computers and networks function, security policies, risk management, a new way of looking at passwords, cryptographic principles, network attacks & malware, wireless security, firewalls and many other security technologies, web & browser security, backups, virtual machines & cloud computing. All topics are covered at an easy to understand introductory level. 

This course is for those who have very little knowledge of computers & technology with no prior knowledge of cyber security. The hands-on, step-by-step teaching approach enables you to grasp all the information presented, even if some of the topics are new to you. You'll learn real-world cyber security fundamentals to serve as the foundation of your career skills and knowledge for years to come.

Written by a cyber security professional with over 35 years of industry experience in both the public and private sectors, SEC301 provides uncompromising real-world insight from start to finish. The course prepares you for the Global Information Security Fundamentals (GISF) certification test, as well as getting you ready for your next training course. It also delivers on the SANS promise: "You can use the knowledge and skills you learn in SEC301 as soon as you return to work."