Cybersecurity Operations

Faculty

Faculty of Engineering and Computer Science

Version

Version 16.0 of 02/23/2023

Code of Module

11B1129

Modulename (german)

Cybersicherheit Praxis

Study Programmes
  • Informatik - Medieninformatik (B.Sc.)
  • Informatik - Technische Informatik (B.Sc.)
  • Elektrotechnik (B.Sc.)
  • Elektrotechnik im Praxisverbund (B.Sc.)
  • Mechatronik (B.Sc.)
  • Lehramt an berufsbildenden Schulen - Teilstudiengang Informationstechnik (M.Ed.)
Level of Module

3

Mission Statement
  • Cyber incidents emerged to one of the most important business risks world wide.Today’s organizations are challenged to minimize there attack surface and to be able to rapidly identify and respond to cyber security incidents (incident analysis and response). The module prepares participants to begin a career working as cyber security analysts by getting trained in:
  • vulnerability analysis of networks and it-systems
  • detection, analysis and response on cyber attacks
Content
  • Tasks of cyber security analysts in organizations
  • Security fundamentals for Windows and Linux operating systems
  • Network protocols, -services and there vulnerabilities
  • Network security devices and infrastructures
  • Threats and network based attacks
  • Network monitoring
  • Logging and log analysis for operating systems and standard applications
  • Fundamentals in cryptography
  • Vulnerability assessment of endpoints
  • Security monitoring and intrusion detection tools
  • Analysis of logged incident data
  • Digital forensic fundamentals
  • Security incident and event management (SIEM) in organizations
  • Incident response models
  • Incident handling procedures
Learning Outcomes

Knowledge Broadening
Students have a deep understanding of cyber security. The know weaknesses of the different communication protocols. They can classify various types of attacks on networks, systems and applications and know the impact of the attacks.
Knowledge Deepening

Students know, why the protection of companies against cyber attacks is limited. They are able to assess, to which extend a preventive protection is possible and know, how to handle security incidents.

Instrumental Skills and Competences
Students are able to use vulnerability scanners to analyse systems and networks. They are able to use intrusion detection tools.
Communicative Skills and Competences
Students are able to identify cyber incidents using according tools, assess and communicate the impacts of the incidents. Therefore standardized naming conventions and approaches are used, as Common Vulnerability and Exposure (CVE) and the Common Vulnerability Scoring System (CVSS).
Systemic Skills and Competences
Students are able to design and implement solutions for network security scanning as well as intrusion detection and analysis.

Mode of Delivery

Lectures, exercise and experimental work in the laboratory

Expected Knowledge and/or Competences
  • knowledge of communication networks and TCP/IP
  • computer science fundamentals
  • prior knowledge in IT security is recommendet but not necessary
Responsible of the Module

Scheerhorn, Alfred

Lecturer(s)
  • Scheerhorn, Alfred
  • Scheerhorn, Alfred
Credits

5

Concept of Study and Teaching
Workload Dozentengebunden
Std. WorkloadLehrtyp
30Vorlesungen
30Labore
Workload Dozentenungebunden
Std. WorkloadLehrtyp
60Veranstaltungsvor-/-nachbereitung
30Prüfungsvorbereitung
Recommended Reading

Troja, Vinniy Hunting Cyber Criminals: A Hacker's Guide to Online Intelligence Gathering Tools and Techniques, Wiley, 1. Auflage, 2020

NIST, Computer SecurityIncident Handling Guide, NIST Special Publication 800-61 Revision 2, 2012

Cisco, CCNA Cyber Ops (SECFND #210-250 and SECOPS #210-255) Official Cert Guide Library, Pearson Education, 2017

Graded Exam
  • Two-Hour Written Examination
  • Viva Voce
  • Oral Presentation / Seminar Paper
Ungraded Exam

Field Work / Experimental Work

Duration

1 Term

Module Frequency

Irregular

Language of Instruction

German