Cybersecurity and the X-Factor

Cybersecurity and the X-Factor

This course is part of Cybersecurity: Developing a Program for Your Business Specialization

Dr. Humayun Zafar, CEH, CISM, CRISC, PCIP

Herbert J. Mattord, Ph.D., CISM, CISSP, CDP

Instructors: Dr. Humayun Zafar, CEH, CISM, CRISC, PCIP

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

7 assignments

Taught in English

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

Build your subject-matter expertise

This course is part of the Cybersecurity: Developing a Program for Your Business Specialization

When you enroll in this course, you'll also be enrolled in this Specialization.

Learn new concepts from industry experts
Gain a foundational understanding of a subject or tool
Develop job-relevant skills with hands-on projects
Earn a shareable career certificate

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV

Share it on social media and in your performance review

There are 4 modules in this course

What is the X-Factor? In Cybersecurity, the X-Factor related to unknown and unpredictable human behavior within and outside of your organization. “No one really knows why humans do what they do”, (David K. Reynolds), and because of this organizations can be unprepared for malicious, untrained, or even best intentioned behavior that can cause alarm and sometimes irreparable harm.

This course will introduce you to the types of training available to reduce the impact of the X-Factor, evaluate its effectiveness, explore the Security Education, Training and Awareness (SETA) program, and learn why it may fail. The course will conclude with information designed to assist you with some critical components for your business security program. Activities focused on hactivism, cyberinsurance, and ransomware will round out your knowledge base. Your team of instructors has prepared a series of readings, discussions, guest lectures, and quizzes to engage you in this exciting topic.

The X-factor within information security is human behavior within and outside your organization. Our introduction includes an overview of information security management and its goals as well as describing the problem created by non-malicious insider behavior. We include discussion about the purpose of training within organizational cybersecurity efforts and whether it is achieving its purpose.

What's included

4 videos6 readings1 assignment1 peer review1 discussion prompt

4 videosTotal 15 minutes

Course Overview video1 minutePreview module
Security and Employee Compliance4 minutes
Industry Q&A: Security and End Users1 minute
Pulling it together8 minutes

6 readingsTotal 81 minutes

Learning Objectives1 minute
MISQ Executive: Information Security Management Overview45 minutes
Phishing Attacks Hurt Convenience Of Online Banking In The Workplace10 minutes
3 things every CISO should know10 minutes
Shadow IT: Mitigating Security Risks10 minutes
Get help and meet other learners in this course. Join your discussion forums!5 minutes

1 assignmentTotal 10 minutes

Introduction to the X-Factor Quiz10 minutes

1 peer reviewTotal 45 minutes

The role of security professionals45 minutes

1 discussion promptTotal 10 minutes

Your own compliance behavior10 minutes

Within this topic we will discuss traditional training efforts. Security education, training and awareness (SETA) programs are designed to reduce the incidence of accidental security breaches. Through the readings you will learn about the design and delivery of these programs as well as various training techniques. This module concludes with a discussion about your experience and opinion about organizational security training.

What's included

4 videos4 readings2 assignments1 discussion prompt

4 videosTotal 17 minutes

Introduction to SETA and training6 minutesPreview module
Industry Q&A: SETA in Real Life2 minutes
Industry Q&A: Customers and Security Training2 minutes
Pulling it together5 minutes

4 readingsTotal 61 minutes

Learning Objectives1 minute
Security Education, Training and Awareness20 minutes
Training20 minutes
Making Security Awareness Work20 minutes

2 assignmentsTotal 40 minutes

Security Education: Training and Awareness Quiz10 minutes
SETA Practice Quiz30 minutes

1 discussion promptTotal 30 minutes

Recent training experience30 minutes

In this module you will understand why traditional training efforts through SETA programs may fail. You will learn about human behavior and how understanding it can help managers better leverage their security efforts. Finally, through the readings you will also see that this is a global issue. The readings present examples of existing awareness campaigns in U.K., in Australia, in Canada and Africa.

What's included

4 videos5 readings2 assignments1 peer review1 discussion prompt

4 videosTotal 15 minutes

Overview: Habits and Vulnerabilities2 minutesPreview module
Employee Habits, Errors, and Security Breaches4 minutes
Habituation: What is it?5 minutes
Pulling it together3 minutes

5 readingsTotal 146 minutes

Learning Objectives1 minute
Why Do Cybersecurity Awareness Campaigns Fail?50 minutes
The Impact of Past Behavior45 minutes
How Does Behavior Become Habitual?20 minutes
Global Threat Report30 minutes

2 assignmentsTotal 60 minutes

Test Your Knowledge!30 minutes
Why Do Cybersecurity Awareness Campaigns Fail Quiz30 minutes

1 peer reviewTotal 30 minutes

Habits and Training Programs30 minutes

1 discussion promptTotal 10 minutes

Automated Behavior10 minutes

We will conclude by identifying some novel problems and practices that organizations are experiencing. You will learn about hactivism, cyberinsurance, and ransomware through popular press readings about recent security problems that landed companies on the front page.

What's included

3 videos6 readings2 assignments1 discussion prompt

3 videosTotal 13 minutes

Threat Intelligence: Planning for attacks5 minutesPreview module
Industry Q&A: Threat Intelligence2 minutes
Pulling it together5 minutes

6 readingsTotal 81 minutes

Learning Objectives1 minute
What is threat intelligence?20 minutes
Rise of Hacktivism20 minutes
Cyber Insurance15 minutes
Protecting yourself from Ransomware10 minutes
Ransomware15 minutes

2 assignmentsTotal 60 minutes

Test your knowledge of threat intelligence30 minutes
Practice quiz: Test your threat intelligence!30 minutes

1 discussion promptTotal 15 minutes

Identify a potential threat15 minutes

Instructors

Instructor ratings

4.5 (45 ratings)

Dr. Humayun Zafar, CEH, CISM, CRISC, PCIP

Kennesaw State University

5 Courses269,599 learners

Offered by

Kennesaw State University

Why people choose Coursera for their career

Felipe M.

Learner since 2018

"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."

Jennifer J.

Learner since 2020

"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."

Larry W.

Learner since 2021

"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

Learner reviews

4.7

256 reviews

5 stars
76.56%
4 stars
17.57%
3 stars
3.12%
2 stars
0.39%
1 star
2.34%

Showing 3 of 256

Reviewed on Jun 17, 2020

It is really great experience in learning this course. I have learned newly about the threat intelligence, employee habits and security breaches etc. Thank you.

Reviewed on May 20, 2020

The course gave an insight about how people become the front line of security defense.

Reviewed on Oct 19, 2020

It is a very enriched course with a lot of information on cyber security.

View more reviews