cybersecurity nexus [csx] · cisco 2014 annual security report, more than 1 million positions for...
TRANSCRIPT
![Page 1: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/1.jpg)
CYBERSECURITY NEXUS™ [CSX]
Abdessabour ArousISACA Tunisia Chapter Member
![Page 2: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/2.jpg)
Cyber Security Professional for 9+ years
Malwares / Operating Systems Internals Specialist
Lecturer in Computer Security
Law Student
2
WHO I AM
![Page 3: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/3.jpg)
3
AGENDA
![Page 4: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/4.jpg)
4
THE WORLD AFTER STUXNET
Source: https://apt.securelist.com
Abdessabour Arous
![Page 5: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/5.jpg)
5
CYBER SECURITY SKILLS SHORTAGE
Not enough Cybersecurity Professionals
Cisco 2014 Annual Security Report, more than 1 million positionsfor security professionals remain unfilled around the world.
ISACA and RSA conference 2016 State of Cybersecurity:
2 million Global shortage of cybersecurity professionals by 2019
Abdessabour Arous
![Page 6: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/6.jpg)
6
CYBER SECURITY SKILLS SHORTAGE
Applicants are not qualified
Source: ISACA State of Security implications for 2015
Abdessabour Arous
![Page 7: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/7.jpg)
Security Administrator
Security Manager
Security Engineer
Penetration Tester
Security Auditor
Security Operation Center Analysts ?
Security Architect ?
Threat Intelligence Analyst ?
7
NEW CYBER SECURITY JOBS
Old New
Abdessabour Arous
![Page 8: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/8.jpg)
Information System have become a Battlefield
Don’t have enough CybersecuirtyProfessional.
Cybersecurity professionals don’thave the right skills
Few or no Cybersecurity courses in the Academia
Need a new curriculum
For Academia and the Industry
Validate the real technical level
8
LET’S SUM UP
Abdessabour Arous
![Page 9: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/9.jpg)
9
NIST CYBER SECURITY FRAMEWORK
Abdessabour Arous
![Page 10: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/10.jpg)
10
CYBER SECURITY NEXUS PATHWAY
![Page 11: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/11.jpg)
11
PRACTITIOONER: PERFORMANCE BASED EXAM
Use vulnerability assessment processes and scanning tool ……
Implement specified cybersecurity controls – for network, application, endpoint, server……
Identify anomalous activity and potential internal …...
Perform initial attack analysis to determine the attack vectors, targets and scope and potential impact.
Execute defined response plans to contain damage on affected assets.
…………..
Abdessabour Arous
![Page 12: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/12.jpg)
New Curriculum adapted to well recognized Cyber Security Best Practices and Frameworks (NIST)
Performance Based Exams to test real world performance
12
CSX CERTIFICATIONS ARE…
![Page 13: CYBERSECURITY NEXUS [CSX] · Cisco 2014 Annual Security Report, more than 1 million positions for security professionals remain unfilled around the world. ISACA and RSA conference](https://reader033.vdocuments.net/reader033/viewer/2022050110/5f47e4d5b597d8263e4690d8/html5/thumbnails/13.jpg)
For more information, visit us at https://cybersecurity.isaca.org
Abdessabour Arous