Australia CISO Confluence 2020

Dates: October 26th-29th 2020 at 10 am – 1 a.m UTC

The worlds most advanced ethical hacking course with 20 of the most current security domains an ethical hacker will want to know when planning to beef up the information security posture of their organization. In 20 comprehensive modules, the course covers over 270 attack technologies, commonly used by hackers. Our security experts have designed over 140 labs which mimic real time scenarios in the course to help you “live” through an attack as if it were real and provide you with access to over 2200 commonly used hacking tools to immerse you into the hacker world. The goal of this course is to help you master an ethical hacking methodology that can be used in a penetration testing or ethical hacking situation. You walk out the door with ethical hacking skills that are highly in demand, as well as the globally recognized Certified Ethical Hacker certification!

Course Outline

• 1. Introduction to Ethical Hacking
• 2. Footprinting and Reconnaissance
• 3. Scanning Networks
• 4. Enumeration
• 5. Vulnerability Analysis
• 6. System Hacking
• 7. Malware Threats
• 8. Sniffing
• 9. Social Engineering
• 10. Denial-of-Service
• 11. Session Hijacking
• 12. Evading IDS, Firewalls, and Honeypots
• 13. Hacking Web Servers
• 14. Hacking Web Applications
• 15. SQL Injection
• 16. Hacking Wireless Networks
• 17. Hacking Mobile Platforms
• 18. IoT Hacking
• 19. Cloud Computing
• 20. Cryptography

Dates:October 26th-29th 2020 at 10 am – 1 a.m UTC

The CCISO program trains individuals who are looking to make the jump from middle management to the executive ranks by focusing on high-level management skills specifically needed for IS executives. From project to audit management, procurement and finance, to strategy and policy, students will be taught to steer complex security programs strategically and successfully. The CCISO program was created and is taught by sitting high-level information security executives from across industries, resulting in the most relevant, challenging, and applicable content on the market.

Domain 1: Governance (Policy, Legal and Compliance)

• 1. Definitions
• 2. Information Security Management Program
• 3. Information Security Laws, Regulations, & Guidelines
• 4. Privacy Laws

Domain 2: IS Management Controls and Auditing Management (Projects, Technology, and Operations)

• 1. Design, Deploy, and Manage Security Controls in Alignment with Business Goals, Risk Tolerance, and Policies and Standards
• 2. Information Security Risk Assessment
• 3. Risk Treatment
• 4. Residual Risk
• 5. Risk Acceptance
• 6. Risk Management Feedback Loops
• 7. Business Goals
• 8. Risk Tolerance
• 9. Policies and Standards
• 10. Understanding Security Controls Types and Objectives
• 11. Implementing Control Assurance Frameworks
• 12. COBIT (Control Objectives for Information and Related Technology)
• 13. BAI06 Manage Changes
• 14. COBIT 4.1 vs. COBIT 5
• 15. ISO 27001/27002
• 16. Automate Controls
• 17. Understanding the Audit Management Process

Domain 3: Management – Projects and Operations

• 1. The Role of the CISO
• 2. Information Security Projects
• 3. Security Operations Management

Domain 4: Information Security Core Competencies 

• 1. Access Controls
• 2. Physical Security
• 3. Disaster Recovery
• 4. Network Security
• 5. Threat and Vulnerability Management
• 6. Application Security
• 7. Systems Security
• 8. Encryption
• 9. Computer Forensics and Incident Response

Domain 5: Strategic Planning and Finance

• 1. Security Strategic Planning
• 2. Alignment with Business Goals and Risk Tolerance
• 3. Relationship between Security, Compliance, & Privacy
• 4. Leadership
• 5. Enterprise Information Security Architecture (EISA) Models, Frameworks, and Standards
• 6. Security Emerging Trends
• 7. It’s all about the Data
• 8. Key Performance Indicators (KPI)
• 9. Systems Certification and Accreditation Process
• 10. Resource Planning
• 11. Financial Planning
• 12. Procurement
• 13. Vendor Management
• 14. Request for Proposal (RFP) Process
• 15. Integrate Security Requirements into the Contractual Agreement and Procurement Process
• 16. Statement of Work
• 17. Service Level Agreements

Dates:October 28th October 2020

In this one-day course you will set up EC-Council’s Mobile Security Toolkit (STORM) OS to interface with your drone, then learn about drone hacking. This will include a wide arrange of topics from the basics of drones and the FCC rules, to the capture, examination, and exploitation of drone data.

Course Outline:

• Module 01: Technical Introduction Drone Hacking
• Module 02: Drone Ethics
• Module 03: Part 1 Robotics as an ecosystem
• Module 04: Part 2 Ground Stations: Servers / Cloud
• Module 05: Drone Hacking