5: Assets, Threats & Vulnerabilities
- Description
- Curriculum
- Reviews
- Grade
Assets, Threats, and Vulnerabilities
In this course, you will learn how to identify and protect critical assets by understanding the threats and vulnerabilities that target them. You’ll explore methods for analyzing an organization’s attack surface, recognize common cyber threats, and gain insight into threat modeling processes used by cybersecurity professionals.
Throughout this course, you will:
-
Classify assets based on their importance and value to an organization
-
Analyze an attack surface to identify risks and potential vulnerabilities
-
Identify common threats, including social engineering, malware, and web-based exploits
-
Summarize the threat modeling process to proactively assess and mitigate risks
-
Complete 5 hands-on labs to practice identifying threats and evaluating vulnerabilities in realistic scenarios
By the end of this course, you’ll be able to assess organizational risks, recognize potential threats, and apply strategies to protect assets against cyber attacks.
-
1
Introduction to Course -
2
Course Overview -
3
Helpful Resources and Tips
-
4
Sophia - My Path to Cyber Security
-
5
Welcome to Module 1
-
6
The What, Why and How of Asset Security
-
7
Understanding Risks, Threats and Vulnerabilities
-
8
Ethan - Life in Asset Security
-
9
Security Starts With Asset Security
-
10
Common Classification Requirements
-
11
Quiz - Introduction to AssetsQuiz - Introduction to Assets -
12
Assignment - Home Office Network Asset Classification -
13
Assignment Example
-
14
Assets in a Digital World
-
15
Quiz - Identify States of Data in the WorkplaceQuiz - Identify States of Data in the Workplace
-
16
The Emergence of Cloud Security
-
17
Quiz - Digital and Physical AssetsQuiz - Digital and Physical Assets
-
18
Elements of a Security Plan
-
19
The NIST Cybersecurity Framework
-
20
Security Guidelines in Action
-
21
Quiz - Risk and Asset SecurityQuiz - Risk and Asset Security
-
22
Assignment- Score Risks Based on Their Likelihood and Severity
-
23
Assignment Example
-
24
Module 1 Wrap-up
-
25
Module 1 Glossary Terms
-
26
Module 1 Final QuizModule 1 - Final Quiz Description: This quiz is designed to assess your understanding of foundational cybersecurity concepts introduced in Module 1. It covers essential topics such as the core principles of cybersecurity, types of cyber threats, methods to ensure data confidentiality and integrity, and the roles of cybersecurity professionals. Through a series of multiple-choice questions, you will demonstrate your knowledge of protecting systems, networks, and data from unauthorized access and harm. This assessment is ideal for students and professionals seeking to solidify their grasp of cybersecurity fundamentals.
-
27
Welcome to Module 2
-
28
Security Controls
-
29
Principle of Least Privilege
-
30
The Data Lifecycle
-
31
Information Privacy - Regulations & Compliance
-
32
Monica - The Importance of Protecting Pii
-
33
Assignment - Determine Appropriate Data Handling Practices
-
34
Assignment Example
-
35
Quiz - Safeguard InformationQuiz - Safeguard Information
-
36
Fundamentals of Cryptography
-
37
Public Key Infastructure
-
38
Symmetric and Asymmetric Encryption
-
39
Understanding OpenSSL - Its Uses and Importance
-
40
LAB - How to Launch Windows PowerShell and Mac OS Terminal
-
41
LAB - Installing and Using Open SSL on Windows, macOS
-
42
LAB - Exploring Encryption and Certificates with OpenSSL
-
43
Quiz - OpenSSL LabOpenSSL Lab
-
44
Non-Repudiation and Hashing
-
45
The Evolution of Hash Functions
-
46
LAB - Creating and Verifying Hash Values (PowerShell & macOS)
-
47
Quiz - Encryption MethodsQuiz - Encryption Methods
-
48
Access Controls and Authentication Systems
-
49
The Rise of SSO & MFA
-
50
The Mechanisms of Authorization
-
51
Why We Audit User Activity
-
52
Jordan - Finding Purpose in Protecting Assets
-
53
Identify and Access Management
-
54
Assignment - Improve Authentication, Authorization & Accounting for a Small Business
-
55
Assignment Example
-
56
Quiz - Authentication, Authorization, and AccountingQuiz - Authentication, Authorization, and Accounting
-
57
Module 2 Wrap-Up
-
58
Module 2 Glossary Terms
-
59
Module 2 Final QuizQuiz Description – This quiz assesses your understanding of key concepts from Module 2, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Identity and Access Management (IAM), AAA frameworks, access control models, and the principles of authentication, authorization, and accounting. You will apply your knowledge to identify security best practices, evaluate access control strategies, and recognize potential vulnerabilities in organizational systems. Correctly answering these questions demonstrates your ability to recommend and implement effective security measures that protect sensitive information while maintaining usability for authorized users.
-
60
Welcome to Module 3
-
61
Vulnerability in Systems
-
62
Vulnerabilities of CI/CD
-
63
Defense in Depth Strategy
-
64
Common Vulnerabilities & Exposures
-
65
The OWASP Top 10
-
66
Open Source Intelligence
-
67
Quiz - Flaws in The SystemQuiz - Flaws in The System
-
68
Vulnerability Assessments
-
69
Approaches to Vulnerability Scanning
-
70
The Importance of Updates
-
71
Omari - My Learning Journey into Cybersecurity
-
72
Penetration Testing
-
73
Quiz - Identify System VulnerabilitiesQuiz - Identify System Vulnerabilities
-
74
Assignment - Analyze a Vulnerable System for a Small Business
-
75
16 - Assignment Example
-
76
Protect all Entry Points
-
77
Approach Cybersecurity with an Attacker Mindset
-
78
Types of Threat Actors
-
79
Leila - Adopt an Attacker Mindset
-
80
Pathways Through Defenses
-
81
Assignment - Self-Reflection: Applying the Attacker Mindset
-
82
Fortifying Against Brute Force Cyber Attacks
-
83
Assignment - Identify the Attack Vectors of a USB Drive
-
84
Assignment Example
-
85
Quiz - Cyber Attack MindsetQuiz - Cyber Attack Mindset
-
86
Module 3 Wrap-up
-
87
Module 3 Glossary Terms
-
88
Module 3 Final QuizModule 3 Final Quiz Description: This quiz checks your practical understanding of core security concepts through scenario-based and multiple-choice questions — you'll identify vulnerabilities versus threats (for example, a misconfigured firewall), apply defense-in-depth thinking, and pick the correct security layer (endpoint, perimeter, data, application). It also tests knowledge of vulnerability management (patching and risk assessment), CVE severity thresholds, common attack surfaces and vectors (workstations, cloud servers, malware, attachments), and the attacker mindset (how adversaries identify and access targets). The quiz includes single-answer questions, multi-select items, and real-world scenarios to help you practice decision-making the way a security analyst would.
-
89
Welcome to Module 4
-
90
The Criminal Art of Persuasion
-
91
Social Engineering Tactics
-
92
Phishing for Information
-
93
Types of Phishing
-
94
LAB - Take the Phishing Quiz and Reflect
-
95
Quiz - Social EngineeringQuiz - Social Engineering
-
96
Assignment - Filter Malicious Emails
-
97
Quiz AssignmentQuiz Assignment
-
98
Malicious Software
-
99
Introduction to Malware
-
100
The Rise of Cryptojacking
-
101
Quiz - MalwareQuiz - Malware
-
102
Cross-site Scripting (XSS)
-
103
Exploitable Gaps in Databases
-
104
Prevent Injection Attacks
-
105
Quiz - Web-based ExploitsQuiz - Web-based Exploits
-
106
A Proactive Approach to Security
-
107
Quiz - Matching - Steps of the Threat Model ProcessQuiz - Matching - Steps of the Threat Model Process
-
108
Taryn - The Value of Diversity in Cybersecurity
-
109
PASTA - The Process for Attack Simulation and Threat Analysis
-
110
Traits of an Effective Threat Model
-
111
Quiz - Matching - Apply PASTA to an Applications Threat ModelQuiz - Matching - Apply PASTA to an Applications Threat Model
-
112
Assignment - Apply the PASTA Threat Model and Framework
-
113
Assignment Example
-
114
Quiz - Threat ModelingQuiz - Threat Modeling
-
115
Assignment - Enhance your Threat Identification Skills
-
116
Module 4 Wrap-up
-
117
Module 4 Glossary Terms
-
118
Module 4 Final QuizModule 4 Final Quiz Description: Congratulations on reaching the final assessment of the Assets, Threats & Vulnerabilities course! This quiz is designed to test your understanding of the key concepts covered throughout the course, including cybersecurity assets, social engineering attacks, malware types, threat modeling, and vulnerability management. The quiz includes multiple-choice questions that challenge you to apply your knowledge, analyze scenarios, and identify correct security measures. Take your time, think critically, and use what you’ve learned to answer each question. By completing this quiz, you’ll demonstrate your readiness to recognize and defend against cyber threats, and solidify your understanding of the foundational principles of cybersecurity. Good luck, and congratulations on completing the course! Your dedication to learning these skills is an important step toward protecting systems and data from evolving threats.
-
119
Reflect and Connect with Your Team
-
120
Course Wrap-up
-
121
Course- Full Glossary
-
122
Get Started on the Next Course
-
Course Title: Assets, Threats, and Vulnerabilities
-
Course Level: Beginner / Intermediate
-
Duration: 20-25 hours
-
Delivery Format: Online
-
Prerequisites: Foundations of Cybersecurity recommended
-
Estimated Time Commitment: 4–5 hours per week
-
Course Type: Video Lessons
-
Hands-On Labs: 5 practical labs on threat identification and vulnerability assessment
-
Focus: Classifying assets, analyzing attack surfaces, identifying threats, and threat modeling
Technical Requirements:
-
A computer (Windows, macOS, or Linux) with reliable internet access
-
At least 8 GB of RAM and 30 GB of free storage space
-
Ability to install and run virtual machines (e.g., VirtualBox)
-
Basic web browser and text editor (e.g., Chrome, Firefox, VS Code)
Software Requirements:
-
Kali Linux Virtual Machine (provided in course instructions)
-
Python (latest version)
-
OpenSSL
-
Access to cybersecurity tools introduced in labs (free and open-source)
Academic Requirements:
-
Completion of all assigned readings and video lessons
-
Participation in hands-on labs and exercises
-
Submission of lab reports or reflections (as assigned)
-
Passing scores on quizzes and final assessment
Recommended Skills (not required):
-
Basic computer navigation (file management, installing software)
-
Interest in technology, problem-solving, and digital safety
This course is designed for beginners who are interested in learning the fundamentals of cybersecurity. It is ideal for:
-
Students exploring a career in cybersecurity or IT
-
Professionals looking to strengthen their digital security knowledge
-
Individuals interested in understanding how networks, systems, and data are protected
-
Anyone with curiosity about online threats, hacking, and cyber defense
No prior technical experience or programming knowledge is required—just a willingness to learn and explore the world of cybersecurity.
