Weitere ähnliche Inhalte Ähnlich wie Webinar - How to Become a Cyber-threat Intelligence Analyst (20) Kürzlich hochgeladen (20) Webinar - How to Become a Cyber-threat Intelligence Analyst1. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
How to Become a
Cyber-threat Intelligence
Analyst
Frank Satterwhite
NetCom Learning
2. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
AGENDA
What is a Threat Intelligence Analyst?
Skills Needed to Become a Threat Intelligence Analyst
Sample Threat Intelligence Report
Why You Will Be In Demand: Leaders Need You
3. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
4. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
WHAT IS A THREAT INTELLIGENCE ANALYST? A WEATHER MAN
• Helps an Organization understand its assets, infrastructure, personnel and business
operations
• Within the context of the business, identifies opportunities to malicious actors.
• Identifies potential vulnerabilities and helps business operations prepare accordingly.
5. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
SKILLS NEEDED TO BECOME A THREAT INTELLIGENCE ANALYST
The Biggest Requirement is to be SMART!
Cyber threat analysts apply scientific and technical knowledge to solving complex
intelligence problems. Threat Analyst must be able to take initiative, be creative, and have
analytical skills. A Common Profile:
1. Undergraduate and preferably graduate degree in Computer Science or Information
Security related field.
2. IT Security Certfications conveying both technical and theoritical understanding
3. Familiarity with Open Source Intelligence Tools (OSINT)
a. Ability to Collect and Analyze Indicators of Compromise
b. Conduct All-Source Analysis
4. Support Digital Forensics
6. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
SAMPLE THREAT INTELLIGENCE REPORT
• 1. Executive Summary
• 2. Key findings
• 3. Background
• 4. Covid-19 Attacks
• 5. IOCs for the campaigns are provided somewhere in the report, usually in the
appendix.
7. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
INCIDENT SUMMARY TAKEN FROM RECORDING FUTURES
REPORTING:
• The AZORuIt malware was observed being delivered by phishing documents that used COVID-19 as a lure in
early February 2020. Researchers at Proofpoint observed a COVID-19-themed phishing campaign targeting
the manufacturing, industrial, finance, transportation, pharmaceutical, and cosmetic industries. These attacks
involved emails that contained Microsoft Office document attachments designed to lure victims and exploit a
Microsoft Office vulnerability, tracked as CVE-2017-11882, which allows attackers to run arbitrary code in the
context of the current user. The malicious documents contained what is purported to be an advisory on the
impact of the virus on the shipping industry. Once the malicious document is opened, it installs the
information-stealing malware “AZORult.” The AZORult strain observed in the campaign did not download
ransomware, as it has done in previous attacks. According to researchers at Proofpoint, the malicious emails
are originating from groups in Russia and Eastern Europe. (
• Kaspersky published an article about phishing emails that emulated the CDC, in particular from emails
containing the domains cdc-gov[.]org and cdcgov[.]org. In one instance, the URL contained within a phishing
email led to a fake Microsoft Outlook login page, designed to convince victims to input their credentials. In
another instance, victims were asked to donate Bitcoin to the CDC to aid in the pursuit of a vaccine.
8. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
WHY YOU WILL BE IN DEMAND: LEADERS NEED YOU
• Threat intelligence market will move from USD 5.3 billion in 2018 to USD 12.9 billion by
2023. Dice lists over 29,000 Cyber Security Intelligence Analyst jobs.
• Cyber threat intelligence provides proper visibility into such emerging security hazards
to reduce the risk of information loss, minimize or block disruption in business
operations, and maximize regulatory consent. Its your Cyber Weather Forecast
9. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
RECORDED WEBINAR VIDEO
To watch the recorded webinar video for live demos, please access the link:
http://tiny.cc/2yiklz
| |
10. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
ABOUT NETCOM LEARNING
NetCom Learningis an award-winning
global leader in managedlearning
services, training and talentdevelopment.
Founded : 1998
Headquarters : NewYorkCity
Delivery Capability : Worldwide
CEO : RussellSarder
90,000+
Professionals
trained
| |© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266
10,000+
Corporate
clients
1500+
IT,Business&
Soft Skillscourses
96%
Of customers
recommend usto others
8.6/9
Instructor
evaluations
20+
Leadingvendors
recognitions
Microsoft’s
Worldwidetraining
partner ofthe year
80%
Trainedofthe
Fortune100
Top20
ITTraining
Company
© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
11. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
RECOMMENDED COURSES AND MARKETING ASSETS
NetCom Learning offers a comprehensive portfolio for Security Courses
» COMPTIA SECURITY+ CERTIFICATION PREP (EXAM SY0-501) –Class Scheduled onApr 06
» IMPLEMENTING CISCO CYBERSECURITY OPERATIONS (SECOPS) V1.0 (ASSOCIATE) –Class Scheduled onApr 06
» CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL (CISSP) – Class Scheduled on Apr20
»COMPTIA CYBERSECURITY ANALYST (CYSA+) –Class Scheduled onApr 27
»UNDERSTANDINGCISCOCYBERSECURITYFUNDAMENTALS(SECFND)V1.0(ASSOCIATE)–Class Scheduled onApr27
» COMPTIA SECURITY+ ELEARNING
»IMPLEMENTINGCISCOCYBERSECURITYOPERATIONS(SECOPS)V1.0(ASSOCIATE)ELEARNING
| |© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
You can also access the below Marketing Assets
» Free On-Demand Training – Explore the Ways to Navigate Your Career in Cybersecurity
» Free On-Demand Training- The Five "Hows": How Cybersecurity Helps Drive Business Agility
» Blog - Top Data Breaches in the 21st Century and Ways to Overcome Them
» Blog - CompTIA Security+ Certification For Enterprise Network Security: Advantages
» Free Assessment Quiz - CompTIA Security+ Certification Prep (Exam SY0-501) Quiz
» Free Assessment Quiz - Certified Information Systems Security Professional (CISSP) Certification Prep Quiz
12. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
UPCOMING WEBINARS
• Why your Organization needs to Migrate on Microsoft Teams
• Learn How to Deploy Microsoft SQL in the Cloud
• Creating a Windows Virtual Machine in Microsoft Azure
• How to Pass the Project Management Professional (PMP®) Exam, 6th Edition
• Citrix Workspace: How to Architecture Microapps
• 5 Steps to Master Microsoft Excel: Workbooks
• Cisco Professionals: How to Add API Skills to Your Networking Toolbox
& More
| |© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
13. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
FOLLOWUS ON
LinkedIn Twitter YouTube
| |© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266
Instagram
© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
14. © 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
BUILDING AN INNOVATIVE LEARNING ORG.
A NEW BOOK FROM RUSSELL
SARDER, CEO AT NETCOM
LEARNING
Aframework to build a smarter
workforce, adapt to change and
drive growth.
DOWNLOADe-book
| |© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||
15. Thankyou
© 1998-2019 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||| |© 1998-2020 NetCom Learning www.netcomlearning.com info@netcomlearning.com 1-888-563-8266||