Download and Learn Security Engineer Udacity Nanodegree Course 2023 for free with google drive download link.
Gain the highly sought-after skills to protect an organization’s computer networks and systems from security threats or attacks.
What You’ll Learn in Security Engineer Nanodegree
Security Engineer
Estimated 4 months to complete
You’ll master the foundational skills necessary to become a successful Security Engineer. This program will focus on how to protect a company’s computer systems, networks, applications and infrastructure from security threats or attacks.
Security Engineer Intro Video:
Prerequisite knowledge
Basics of Python, experience configuring AWS and Linux environments.
A well-prepared learner is already able to:
- Understand basic operating system fundamentals
- Understand basic principles of networking
- Follow, interpret and implement minor modifications to Python code
- Set up an AWS environment and perform cloud configuration/management
- Set up a Linux environment and perform system configuration/management
Security Engineering Fundamentals
This course introduces the fundamental concepts and practices of security engineering. These are the basic principles and properties a security engineer will apply when evaluating, prioritizing and communicating security topics. Additionally, you’ll learn about the practical applications of cryptography. You will also learn about strategies for risk evaluation, security review and audit.
Project – TimeSheets
Your company utilizes a custom application, called TimeSheets, to log timesheets. This custom application was built in-house. Until recently, this application was only accessible via the internal corporate network. Shortly after exposing TimeSheets externally, the IT and security operations teams began noticing odd behavior related to TimeSheets. IT has seen a significant amount of users reporting incorrect data in the system. The security operations center has noticed logins from unexpected locations and unexpected times. After raising an incident, it was determined that unauthorized logins were occurring. After resolving the incident, your team was asked to come in and assess the application and provide recommendations. A senior security engineer from your team completed the initial threat model related to the incident. During the threat model, your colleague discovered the root cause for the incident as well as several other vulnerabilities – all of which are related to encryption. Due to other obligations, your colleague has asked you to complete their work.
System Security
In this course, you’ll start by exploring the basics of system security and its implementation at the operating system level. You will learn about implementing authentication and authorization as a means to protect access to data and services. You will also learn about detecting unauthorized changes to a system and how to effectively counter them. By the end, you will understand how to build logging, monitoring and auditing tools that can alert you to system security breaches and how to effectively counter them in a real-world case.
Project – Responding to a Nation-State Cyber Attack
South Udan is a small island nation that is peaceful and technologically advanced. Its neighbor, North Udan, carries out a cyber attack on their nuclear reactor plant in order to disrupt their advanced research on generating clean
energy by using Tridanium. Your task will be to implement the course learnings to investigate a Linux virtual image that was taken from the server that was compromised in the cyber espionage campaign carried out by North Udan. You will work towards identifying the infection chain along with assessing and improving the system’s resilience against malicious attacks by building scanning, monitoring and auditing tools.
Infrastructure Security
In this course, you will be introduced to the industry best practices for security configurations and controls. You will perform an assessment that includes security benchmarks, configurations and controls. You will also scan the main infrastructure operating systems for vulnerabilities and produce a report based on an industry scenario. At the end of this course, you will be familiar with industry terminology and security best practices. You will also learn to perform vulnerability scans and produce industry-standard reports.
Project – Adversarial Resilience: Assessing Infrastructure Security
StaticSpeeds company has recently been acquired by NuttyUtility. We need to decide if StaticSpeeds systems should be integrated into NuttyUtility’s extended network and infrastructure. Your task will be to check CIS Benchmarks against Windows and Linux operating systems at StaticSpeeds. You will also need to perform a vulnerability scan using Nmap and produce a comprehensive report including all the required CIS Benchmark checks and vulnerabilities found in these systems. Finally, you will provide a recommendation based on your findings and evaluate whether StaticSpeeds systems are ready to be integrated with the NuttyUtility extended network.
Application Security
In this course, you will learn the basics of secure web application. You will start by learning about OWASP and the Top 10 list of vulnerabilities within web applications. You will also learn how to do Static code scans using special software and even how to manually test a web application. By the end of this course you will be able to work as a security expert that can help shape the security posture of the development team to help build more secure web applications.
Project – Vulnerable Web Application
You have been hired by a startup company, USociety, who has received reports from the well known hacker group fcity that their customer data was breached. They need you to identify how the attackers got into their system, extracted all of their customer’s data, and any other security holes that their application might have. This security audit is considered the highest priority for the company and they need your help. You will need to review some static code to help identify and prioritize all vulnerabilities and help create recommendations on how best to mitigate these vulnerabilities. You will also need to manually test the vulnerable web application to find all vulnerabilities and create a writeup documentation to help the development team patch the code. The writeup documentation clearly outlines the steps needed to reproduce the security issue and best practices to help the development team better understand the issue.
Cybersecurity professionals earn approximately $135,000 per year, on average.
Security Engineer Nanodegree Free Download Link:
