Cyber Defense Tips to Rival the NSA

preview_player
Показать описание
Cyber defense is much more than security. “Security” can be misleading since it encourages people to think in terms of secure or insecure. This way of thinking leads to an overemphasis on preventative measures. Just like the human body, you need many more layers than that. A good cyber defense will also focus on deception, detection, and response in addition to prevention. In this video, we cover the four most important principles of cyber defense.

#1 Security Architecture:
You can’t defend what you can’t see. It’s really hard to build strong cyber defenses if the foundations aren’t sound. Security architecture is about improving visibility in the network through segmentation. You also want to maintain a good asset inventory and map to quickly identify what’s even there. Implementing policies like blocking removable media or blocking protocols are also architectural in nature.

#2 Security Monitoring:
Every asset connected to the network needs to generate telemetry. This gives you visibility into the activity occurring on them. Network traffic itself should also be sent to an IDS sensor like Snort or Zeek to generate security data from it. These logs should be aggregated and synced to a centralized location for monitoring. A team of analysts can build systems to detect and alert on anything anomalous. This team serves as the backbone of the network’s cyber defense.

#3 Implement Choke Points
For effective security monitoring, it’s key to limit the paths devices can communicate on. Blocking outbound traffic by default is the best way to do this. What is allowed to traverse the network then needs closer inspection. The best way to do this is to force clients to use a local DNS resolver or web proxy to access the Internet. Any traffic not destined for these inspection points is automatically suspect. What does go through can then be analyzed against blocklists or a reputation scoring service. Choke points not only restrict an attacker’s maneuverability but also make it easier to conduct proper cyber defense.

#4 Harden Systems with a Security Baseline
Systems running default configurations are highly vulnerable to generalized attacks. Deploying a security baseline on your assets ensures a consistent level of hardening against them. It also helps with managing change configuration on your network. Authorities like CIS, NIST, DISA, or vendors will all provide recommendations for different types of systems. These include operating systems, applications, phones, and network appliances. Whether it’s scripts, Group Policy Objectives, or Ansible playbooks, they’ll also offer ways to automatically apply baselines too.

00:00 Intro: How to Improve Cyber Defense For Your Network
01:11 The Biggest Misconception in Cyber Security
02:52 Traditional v. Modern Cyber Defense
05:02 Security Architecture & Building a Defensible Network
07:44 Principles of Security Monitoring: Assets & Endpoints
09:40 Create Choke Points In Your Network For Inspection
12:11 Collect Traffic With Network Security Monitoring
14:13 Hardening Systems with a Security Baseline
16:52 Strategies for Implementing Your Cyber Defenses

👍 LIKE AND SUBSCRIBE 📺

----- Resources -----

Rob Joyce’s talk at USENIX Enigma 2016:

#CyberDefense #DFIR #Cyberspatial
  1. Cyberspatial
  2. cyber defense
  3. cyber defense exercise
  4. cdx
  5. cyber defender
  6. defensive cyber
Рекомендации по теме
Cyber Defense Tips 0:18:38

Cyber Defense Tips to Rival the NSA

How to Learn 0:15:19

How to Learn Cyber Security Faster In 5 Simple Steps

How To Deal 0:13:21

How To Deal With Arrogant People in Cyber Security

How Cyberwarfare Actually 0:20:53

How Cyberwarfare Actually Works

Locked Shields: NATO 0:08:06

Locked Shields: NATO holds world's largest cyber defense exercise | DW News

How To Pass 0:14:23

How To Pass a SANS Cyber Security Exam in 5 DAYS (No books…)

How Building a 0:10:40

How Building a Cyber Security Startup Ruined My Life (why I’d do it again!)

Explaining Your Job 0:02:54

Explaining Your Job To Your Boomer Boss | Mr. Robot

AI Security Awareness 1:49:27

AI Security Awareness Podcast by AITS

Watch This Russian 0:02:56

Watch This Russian Hacker Break Into Our Computer In Minutes | CNBC

Real Hacking: Learn 0:14:55

Real Hacking: Learn The Cyber Kill Chain

Cyber Crime and 0:08:29

Cyber Crime and Hunting Cyber Criminals

Kampus Pay Cyber 0:16:11

Kampus Pay Cyber Security Defense Program

How to build 0:10:41

How to build a strategy of layered cyber deterrence ? By Robert Morgus

State of Texas 0:02:35

State of Texas is assured with cybersecurity defense in-depth strategy

Cybersecurity Mastery: Complete 13:48:38

Cybersecurity Mastery: Complete Course in a Single Video | Cybersecurity For Beginners

EDA Cyber Defence 0:01:15

EDA Cyber Defence Programme

A Christmas Gift 0:25:42

A Christmas Gift From Hackers | 3 Huge Companies Hacked | Cyber Defense Tips | Monk Mode is GREAT!

How North Korea 0:12:40

How North Korea Conducts Cyber Operations

Cyber Defense Labs 0:01:20

Cyber Defense Labs Helps Small and Medium Businesses Reduce Risk

Introduction To Cyber 0:38:20

Introduction To Cyber Security | Cyber Security Training For Beginners | CyberSecurity | Simplilearn

Ransomware Payments Dwindle 0:07:11

Ransomware Payments Dwindle as New Cyber Defense Tactics Begin | WSJ Tech News Briefing

Using AI as 0:23:53

Using AI as a first line of Cyber Defense

Phishing Explained In 0:06:48

Phishing Explained In 6 Minutes | What Is A Phishing Attack? | Phishing Attack | Simplilearn

Комментарии
Автор

What do you think are the most important aspects of a good cyber defense?

Cyberspatial
Автор

The quality on your videos are so far above most YouTubers that have millions of subscribers and an unlimited budget. Keep up the great work! Best cyber sec channel for sure!

justindittburner
Автор

We really appreciate such high quality videos ❤️

rayancrasta
Автор

Just luv dis Video Dude, Literally no-one talked about Cyber Defense till now...except u

sagnik
Автор

I appreciate the amount of effort and energy you put to produce these videos.

dencam
Автор

You are addictive this morning, thank you for sharing your brilliance!!!!

TRADERSFRIEND
Автор

Dude, this was like 6 months of Cyber Defense training in 18 minutes. Thanks!! (Subscribed)

wannabedal-adx
Автор

I don’t usually watch full videos but yours was an exception.

Definitely loved the content delivery please never stop making this content

mr_o
Автор

When it comes to knowing oneself, I prefer this quote from the game Alpha Centauri:

“Information, the first principle of warfare, must form the foundation of all your efforts. Know, of course, thine enemy. But in knowing him do not forget above all to know thyself. The commander who embraces this totality of battle shall win even with the inferior force.”

-Spartan Battle Manual

I’m a total nerd, yes, but this is especially relevant to anyone trying to defend their organization from threat actors with superior resources (such as foreign states, which may be trying to infiltrate your networks and even your physical building to conduct espionage; I’m sure Boston Dynamics, for example, has these concerns).

Or course I’m not discounting Sun Tzu. The Art of War is a fantastic book on how to deal with conflict. A great deal of it though is about diplomacy and _avoiding_ direct conflict through shrewd statesmanship and subterfuge. I’m not sure those parts are terribly relevant to cybersecurity, since we’re basically in a state of constant, open warfare at this point.

liesdamnlies
Автор

Sounds like you’ve taken some of the SANS courses! - Great content!!!!

Francois-B-Arthanas
Автор

Man I wish I could put a ring on your channel. You have amazing content and I don't stress that enough!!! I always recommend this channel to people who take interest in cyber security. This is gold for nerds haha

robertcrier
Автор

1 Day the NSA, CIA or the Homeland security will Hire this Man

nicolo
Автор

Your editing is just stellar, really- since I started watching these videos I also can't help but wonder where you work. They must be lucky!

zackarysilva
Автор

Excellent information with great example really good learning curve. Thanks and appreciate it.

siddheshghag
Автор

This is one of your most useful videos yet. Thanks!

coldheat
Автор

PRO TIP: for people new in cyber security like me, watch on 0.5x or 0.75x to be able to digest all of this amazing information.

justabyte
Автор

Great video - you make a complex topic easy to digest

rrigaud
Автор

Very intelligent! Definitely an Expert!

allsortsofstones
Автор

I'm still in high school, and I have an insurmountable amount of interest and curiosity when it comes to cybersecurity, and I'm very interested in pursuing it as my career, especially once I have completed high school. This begs the question, where do I start? What are some methods of education and self-education? And how do I maintain a consistently high amount of motivation when learning? I have no idea what path to take in order to start, as well as how to continue down it once I take it. Knowing this information would be a tremendous help. Thanks in advance!

sawyerschneider
Автор

This channel is really a hidden gem, subscribed and if i can do it 1000 times more i would do that.

noharmintended