0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Top Five Cybersecurity Challenges In 2021
By: Nihad Hassan
March 24, 2021

IT leaders increasingly appreciate the importance of cybersecurity to their organizations, the recent cyberattacks against high-profile organizations show the vital work that should be done to overcome and mitigate such attacks as possible. The ongoing spread of COVID19 disease has forced most organizations to adopt the work from home model. The massive shift of the workforce to become remote has increased ...

ISSEP Training Course Review
By: Shimon Brathwaite
March 24, 2021

What is the ISSEP training course? The ISSEP stands for Information Systems Security Engineering Professional, a concentration for the CISSP certification, the most popular and in-demand cybersecurity certification globally. The ISSEP certification is vendor-neutral specialty certification that demonstrates an individual’s proficiency in designing, creating, and implementing security for information systems, services, and applications. This course is designed to give students the ...

Top 11 Python Interview Questions
By: Nihad Hassan
March 23, 2021

There are many high-level programming languages; however, Python language gain increased popularity among cybersecurity professionals in recent years for many reasons like: Python programming is considerably easy to learn, comparable with Java and C, and its syntax is much simpler. Python is a free and open-source programming language so that anyone can play with its code. Python is supported ...

SIEM vs SOAR: What’s The Difference?
By: Owen Dubiel
March 23, 2021

Technology and cyber threats alike are advancing more every day. In the security community, we must strive to push forward with innovation to keep up with the latest threats. One way of accomplishing this is through the utilization of a SOAR (Security Orchestration automation & response) platform. It takes the traditional SIEM solution to the next level. Gone are the ...

Splunk Enterprise Certified Administrator Course Review
By: Shimon Brathwaite
March 22, 2021

What is Splunk? It's a software tool that makes machine data on multiple machines across the network available for analysis, better known as SIEM (Security Incident Event Management). It does this by collecting data, identifying patterns, providing metrics, diagnosing problems, and performing basic analytics on all the machines that have had the Splunk agent installed on them. This information ...

How To Become A Data Analyst
By: Matt Choi
March 22, 2021

The Data Analyst career path teaches students to determine how data can answer questions and solve problems. Students will learn how to examine data from multiple sources to provide security and privacy insights in the courses included. They will also learn to design and implement workflow processes, layouts, and custom algorithms for multifaceted, enterprise-level data sets used for data mining, ...

MacOS Terminal: Create a Bootable USB from an ISO Using "dd"
By: kedlogic
March 19, 2021

WHAT IS THE "dd" COMMAND? dd is a command-line utility for Linux and Unix systems whose primary purpose is to convert and create low-level file copy. The dd command's syntax differs from various other Unix programs, as it uses syntax option=value rather than the standard syntax -option value or -option=value formats. By default, the dd command reads from stdin ...

How Passwordless Authentication Works
By: Nihad Hassan
March 16, 2021

As society moves steadily to become fully digital, human dependence on digital systems to work, study, shop, and socialize will increase. Securing access to these systems is vital to protect the user's identities and data. Digital authentication systems play an integral role in securing IT systems in today's information age. The ability to identify yourself among billions of connected people is ...

How to Implement the NIST CSF with the AWS Cloud for Risk and Control Maturity Cybersecurity Assessments
By: S.E. Williams, MDI, MSc, Cybersecurity
March 16, 2021

The focus of this article is implementing the NIST CSF within an AWS Cloud Environment. It follows earlier Cybrary articles, which introduced the NIST CSF and integrating the framework with other industry-specific methods to conduct cybersecurity risk and control maturity assessments. Brief History of the NIST CSF The NIST CSF 1 is a cybersecurity assessment-type framework developed by ...

Updating Internal Audit Controls
By: Darcy Kempa
March 15, 2021

Organizations select internal controls to protect their assets. The assets can vary from data to network equipment to personnel. These have one thing in common; they provide value to the organization. A control, therefore, must address a vulnerability and mitigate risk to an asset. New vulnerabilities are being found and reported almost daily. These new findings are listed on the Common ...