ITCA - Cybersecurity Fundamentals Online Training

This entry-level cybersecurity training prepares cybersecurity specialists to perform the basic, professional tasks required of an entry-level IT professional in a cybersecurity capacity.

This course prepares learners for one of the most fundamentally comprehensive professional cybersecurity certifications available. Although earning the certification is valuable for cybersecurity hopefuls, the training is also excellent for non-IT professionals and teams who need a well-rounded understanding of the threats that exist in the modern world, how best to avoid them, and what to do if there is a successful attack against your network.

For anyone who leads an IT team, this ISACA training can be used to onboard new cybersecurity specialists, curated into individual or team training plans, or as a ISACA reference resource.

ITCA - Cybersecurity Fundamentals: What You Need to Know

This ITCA training has videos that cover topics including:

Identifying organizational assets and cybersecurity threats to them
Providing a fundamental level of information security protection
Performing basic security operations
Responding appropriately to breaches and incidents
Monitoring threat landscapes and accurately identifying anomalous behavior

Who Should Take ITCA - Cybersecurity Fundamentals Training?

This ITCA - Cybersecurity training is considered foundational-level ISACA training, which means it was designed for cybersecurity specialists. This security best practices skills course is valuable for new IT professionals with at least a year of experience with security tools and experienced cybersecurity specialists looking to validate their cybersecurity skills.

New or aspiring cybersecurity specialists. If you want to someday work in cybersecurity, a course like this one is the perfect place to start. After, you'll have the thorough and comprehensive understanding of the cybersecurity threat landscape employers want. You'll understand your responsibilities in keeping a network safe, and you'll have the basic skills of professional cybersecurity.

Experienced cybersecurity specialists. If you've already been working in cybersecurity for several years, the material on this course is probably already pretty familiar to you. But earning the ITCA Cybersecurity Fundamentals signals to employers that you're serious about keeping their networks safe and doing your job professionally, and taking this course ensures you'll breeze through the exam.

Skill:
Defining Security and its Roles
- 1. IT Security
  11 mins
- 2. Information and Communications Technology (ICT)
  7 mins
- 3. Network Security
  6 mins
- 4. Cybersecurity
  7 mins
- 5. Specialized Systems
  7 mins
Skill:
Roles, Governance, Continuity, and Recovery
- 1. Cybersecurity Roles
  9 mins
- 2. Resilience
  6 mins
- 3. Continuity and Recovery
  6 mins
- 4. Recovery Time and Point Objectives
  5 mins
- 5. Backup Location
  3 mins
- 6. Backup Media
  7 mins
- 7. Backup Types
  9 mins
Skill:
CIA, Least Privilege, and Privacy
- 1. CIA: Confidentiality
  8 mins
- 2. CIA: Integrity
  8 mins
- 3. CIA: Availability
  8 mins
- 4. Principle of Least Privilege
  10 mins
- 5. Personal and Private Info
  12 mins
Skill:
Threat Landscape
- 1. Internal Risk (Insider Risk)
  7 mins
- 2. Insider Risk: Shadow IT
  9 mins
- 3. Emerging Threats
  6 mins
Skill:
Motivations, Agents, and the Attack Sequence
- 1. Motivations and Agents
  8 mins
- 2. Reconnaissance and Entry
  19 mins
- 3. Foothold, Escalation, and Discovery
  11 mins
- 4. Lateral Movement, C2, and Exfiltration
  8 mins
Skill:
Malware and its Symptoms
- 1. Even More Types of Malware!
  14 mins
- 2. Live Discovery of Drive-By Malware
  4 mins
- 3. Camera and Microphone Hijacking
  8 mins
- 4. Symptoms of Malware
  14 mins
- 5. More Symptoms of Malware
  10 mins
- 6. Demonstration of Unauthorized Installation
  3 mins
Skill:
Risk Management
- 1. Addressing Risk and Criteria
  10 mins
- 2. Third-Party Risk
  16 mins
- 3. SolarWinds Case Study: Introduction
  5 mins
- 4. SolarWinds Cast Study: Attack Details
  17 mins
Skill:
Common Attack Methods Part 1
- 1. Advanced Persistent Threat (APT)
  8 mins
- 2. Back Door
  5 mins
- 3. Brute Force
  10 mins
- 4. Rainbow Tables and Password Spraying
  5 mins
- 5. Buffer Overflow
  3 mins
- 6. Covert Channels
  5 mins
- 7. Steganography Demonstration
  8 mins
Skill:
Common Attack Methods Part 2
- 1. Cross-Site Scripting (XSS)
  7 mins
- 2. Denial of Service and Man-in-the-Middle
  11 mins
- 3. Social Engineering
  10 mins
- 4. Additional Attacks
  13 mins
- 5. SQL Injection and Validation
  9 mins
Skill:
Regulatory Requirements, The Modern Perimeter
- 1. Standards Organizations
  4 mins
- 2. General Data Protection Regulation
  4 mins
- 3. PCI DSS and PSD2
  5 mins
- 4. HIPPA
  6 mins
- 5. The Internal and External Perimeters
  3 mins
- 6. The Internet Perimeter
  10 mins
Skill:
Network Security Controls
- 1. The Demilitarized Zone (DMZ)
  7 mins
- 2. Switch Communication
  5 mins
- 3. Router Communication
  4 mins
- 4. Securing a WiFi Access Point
  12 mins
Skill:
Understand Firewall Functions
- 1. Basic Firewall Functions
  10 mins
- 2. Hardware Firewalls
  8 mins
- 3. Application Firewalls
  4 mins
- 4. Next Generation Firewalls (NGFW)
  7 mins
Skill:
Endpoint Firewalls and Windows Firewall
- 1. Endpoint Protection
  3 mins
- 2. Allow an Application Through Windows Firewall
  7 mins
- 3. Configure Specific Firewall Settings
  12 mins
Skill:
Mac/Linux Firewalls and IDS/IPS
- 1. Azure Firewall
  1 min
- 2. Mac Firewall
- 3. Linux Firewall Configuration
  1 min
- 4. Linux Firewall Automation
  1 min
Skill:
AAA Controls
- 1. Authentication Controls
  18 mins
- 2. Authorization Controls
  24 mins
- 3. Accounting Controls
  13 mins
Skill:
Cloud Services
- 1. CAPEX vs OPEX, and Defining the Cloud
  5 mins
- 2. NIST Cloud Characteristics
  9 mins
- 3. Microsoft Cloud Layout
  4 mins
- 4. Explore Cloud Datacenters
  11 mins
Skill:
Cloud Security and Models
- 1. Cloud Security Benefits
  4 mins
- 2. Cloud Security Risks and Recommendations
  16 mins
- 3. IaaS PaaS and SaaS
  11 mins
- 4. Public, Private, Hybrid, Community Cloud
  7 mins
- 5. Create an Azure VM
  14 mins
Skill:
Data Security
- 1. Database Security
  20 mins
- 2. Data Classification
  14 mins
- 3. Data at Rest, in Motion, and in Use
  4 mins
- 4. Protecting Data via Timely Updates
  11 mins
Skill:
Symmetric Encryption
- 1. Encryption Introduction
  7 mins
- 2. Symmetric Encryption
  4 mins
- 3. The Case for Symmetric Encryption
  10 mins
- 4. Symmetric Algorithms
  9 mins
Skill:
Asymmetric Encryption, Hashing, Digital Signatures
- 1. Asymmetric Encryption Flow
  2 mins
- 2. Asymmetric Encryption Algorithms
  8 mins
- 3. Hashing Data
  16 mins
- 4. Digital Signatures
  3 mins
Skill:
PKI and Applying Cryptography
- 1. Public Key Infrastructure (PKI)
  8 mins
- 2. Secure Shell (SSH)
  4 mins
Skill:
Security Operations and Vulnerability Management
- 1. SOC Models
  7 mins
- 2. SOC Staff
  12 mins
- 3. SOC Areas of Responsibility
  15 mins
Skill:
Penetration Testing and EDR
- 1. Penetration Testing Overview
  3 mins
- 2. Pen Test Phase: Plan and Discover
  16 mins
- 3. Pen Test Phase: Attack and Report
  5 mins
- 4. Dangers of Pen Testing
  8 mins
- 5. Endpoint Detection and Response
  8 mins
Skill:
Incident Response and Digital Forensics
- 1. SIEM and SOAR
  13 mins
- 2. Incident Response, Handling, and Phases
  6 mins
- 3. Incident Response Plan
  6 mins
- 4. Digital Forensics Investigations
  2 mins
- 5. Preserving Evidence
  12 mins
- 6. Chain of Custody
  4 mins
Skill:
Network Command-Line Tools
- 1. PING
  9 mins
- 2. ARP
  8 mins
- 3. IPCONFIG, ifconfig and ip addr
  6 mins
- 4. Route and iptables
  10 mins
Skill:
Penetration Testing Tools
- 1. nmap
  6 mins
- 2. SSH
  6 mins
- 3. hashcat
  8 mins
- 4. Crack Windows Passwords
  10 mins
- 5. Generate Hashes
  4 mins
- 6. Capture Network Traffic with Wireshark
  8 mins
Skill:
Concluding Tools and Techniques
- 1. Netstat and SS
  8 mins
- 2. Pathping and MTR
  9 mins
- 3. NSLOOKUP
  4 mins
- 4. Netcat
  10 mins
- 5. Sysinternals Suite
  18 mins

Loading transcripts...

IT Security

Access all premium content with a free week!

Start a free week

Explore Features

Course overview

23 HOURS OF TRAINING

27 SKILLS

171 VIDEOS

2 VIRTUAL LABS

0 PRACTICE EXAMS

James Conrad

Nugget trainer since 2020

Read the full bio

What is it like to train with us?

Our learners say it best.

Helps me learn the skills I need when I need them

THOMAS S. | SYSTEMS ENGINEER & CONSULTANT

Read Reviews

ISACA ITCA - Cybersecurity Fundamentals (ITCA-CF) FAQs: Cost, Training, Value

What is ISACA and ITCA?

ISACA is a global professional organization of IT professionals in governance, security and assurance. Now known only as ISACA, it used to stand for Information Systems Audit and Control Association. ITCA is an early-career IT certification that is actually comprised of five standalone certificates in five different fields of IT. This course covers the material tested by the cybersecurity portion of the ITCA certification, including practical skills and theory.

Is the ISACA ITCA Cybersecurity cert worth it?

The ITCA Cybersecurity certification is a good validation of broad, early-career skills and knowledge. Whether it's worth it for you depends on several factors. For IT professionals with little to no prior work experience who need to demonstrate their readiness to work in a setting that includes cybersecurity responsibilities, it's worth it. But if you already have substantial, specialized cybersecurity experience, it may be too junior of a credential.

What are the fundamentals of cybersecurity?

According to the ITCA Cybersecurity certification, these are the four fundamentals of cybersecurity: threat landscape, security operations and response, information security fundamentals, and securing assets. Threat landscape covers all the potential risks your network faces. Security operations are real-time actions and procedures a professional knows how to do. Information security covers principles and practices that protect data from unauthorized access. Securing assets refers to safeguarding valuable resources like data, devices and networks.

What are the five Cs of cybersecurity?

There's no right answer for what the 5 Cs of cybersecurity are. Breaking down topics into mnemonics is a helpful way to teach complex information, but different sources have their own versions. Some people say the 5 Cs of cybersecurity are Change, Continuity, Cost, Compliance and Coverage, which cover providing holistic network security. Alternatives include Confidentiality, Compliance, Control, Cognition and Culture, which cover the necessary components of a network's security.

Who should take this course on ITCA cybersecurity fundamentals?

First of all, anyone who would like to earn the ITCA from ISACA should plan on taking this course. Earning that certification requires passing five separate smaller certifications, including Cybersecurity. But even if you're not planning on earning the ISACA Cybersecurity Fundamentals credential, this is a great course for new IT professionals who want to understand the cybersecurity career field and prepare for jobs related to securing data and networks.

ISACA CISM – Certified Information Security Manager

ISACA CRISC – Certified in Risk and Information Systems Control

What is it like to train with us?

Our learners say it best.

ISACA ITCA - Cybersecurity Fundamentals (ITCA-CF) FAQs: Cost, Training, Value

Let's chat!