Security engineers serve to design and implement secure systems, networks and software, with an understanding of the threats and risks an organization faces. We know that security incidents are increasingly common and continue to grow in sophistication. In addition, bad guys are increasingly interrelated with well-funded sources. Thus it is vital for organizations to proactively harden their defenses. A security engineer is critical to an organizations security and defense infrastructure, while also contributing to incident response. This path on TryHackMe aims to provide an understanding of various elements of Security Engineering and in turn, gives us a well-rounded perspective, regardless of which area of cybersecurity we operate in.
The Security Engineer Path Includes:
- Introduction to the career paths available to Security Engineers, and necessary security fundamentals;
- Introduction to Network, System, and Software Security Engineering, with a focus on secure architecture and hardening, and understanding threats and vulnerabilities that affect an organizations assets;
- Risk Management and threat modelling, and necessary analysis skills and tools;
- Incident response as a Security Engineer and role as a first responder and cyber crisis management.
-
Foundations - Security principles, Cryptography fundamentals, Identity Management Basics
-
How to identify and manage threats and risks, as a Security Engineer - Governance and Regulation, Threat Modelling, Risk and Vulnerability Management
-
Principles - Including Secure Protocols, Hardening OS, cloud and network devices
-
Integrating security into the development process, mitigation of common vulnerabilities in web applications
-
Role of Security Engineers in IR and IM