In INFOSEC, the focus of the discussion is a bird’s eye view of the different domains of Information Security. More importantly, the curriculum followed is the CompTIA Security+ lessons. The final project’s objective is to be able to explore on security tools and software such as firewall, IDS, honeypot and to demonstrate the functionalities by doing test scenarios.
For COMSEC1, the focus shifts into a more specific topic on ethical hacking. The course discusses the steps on ethical hacking and its importance. For the final project, students are required to conduct a static code analysis and vulnerability scan in an existing project and fix the risks to an acceptable risk level.
Some of the projects include:
Web application – Web_COMSEC1
Mobile application – Mobile_COMSEC1
Last July 31, 2015, I gave a talk about Information Security and Ethical basics at PATTS College of Aeronautics in Paranaque City. It was quite challenging because the audience were not familiar with IT concepts.
I started by showing them local news about hacking data in banks. Then I established the need for the information security field. I discussed the core concepts of information security.
I also talked about the steps in ethical hacking and the reason why it has to be conducted routinely. Lastly, I stressed the need for a cybercrime law that will protect our data handled by third-party organizations.
The presentation I used and created can be found here: PATTS_Infosec&EthicalHacking101
Special thanks to Prof. Diana Lachica for inviting me to their campus. 🙂
Photo Credit: Ashley Dy