Lab - Becoming a Defender

Objectives
Research and analyze what it takes to become a network defender.
Part 1: Conduct search of Certifications.
Part 2: Investigate positions available within cybersecurity

Background / Scenario
In our technology-centric world, as the world gets more connected, it also gets less safe. Cybersecurity is one
of the fastest growing and most in-demand professions. Individuals in this field perform a wide variety of jobs
including, but not limited to, consultation, investigation, and program management services to mitigate risks
from both internal and external sources. Cybersecurity professionals are required to evaluate, design and
implement security plans, conduct in-depth fraud investigation, perform security research and risk
assessment, and propose solutions to potential security breaches.
Individuals with good security skills have a great earning potential. To be considered for one of these high
paying jobs, it is very important to have the proper qualifications. Because of this, it is important to consider
the industry certifications available for this career path. There are many certifications to choose from.
Selecting the right certification(s) for you requires careful consideration.
Note: You can use the web browser in the virtual machine that was installed in a previous lab to research
security-related issues. By using the virtual machine, you may prevent malware from being installed on your
computer.

Required Resources
 PC or mobile device with internet access and virtual machine (optional).

Instructions

Step 1: Conduct search of Certifications.

a. Use your favorite search engine to conduct a search for the most popular cybersecurity-related
certifications. List them below with the organization that provides the certification.
* CEH (Certified Ethical Hacker ) → EC-Council
* CompTIA Security+ → CompTIA
* CCNA → Cisco
* CCNP → Cisco
* OSCP (Offensive Security Certified Professional) → Kali Linux
* CISA (Certified Information Systems Auditor) → ISACA
* MTCNA (MikroTik Certified Network Associate) → Mikrotik

b. Pick three certifications from the list above and provide more detail about the certification requirements
and knowledge gained i.e.: vendor specific or neutral, number of exams to gain certification, exam
requirements, topics covered etc.
* CEH ( Certified Ethical Hacker )

 2018 - 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 1 of 3 www.netacad.com
Lab - Becoming a Defender

Number of Questions: 125

Test Duration: 4 Hours
Test Format: Multiple Choice
Test Delivery: ECC EXAM, VUE
Exam Prefix: 312-50 (ECC EXAM), 312-50 (VUE)
Passing Score:
In order to maintain the high integrity of our certification exams, EC-Council Exams are provided in
multiple forms (I.e. different question banks). Each form is carefully analyzed through beta testing with an
appropriate sample group under the purview of a committee of subject matter experts that ensure that
each of our exams not only has academic rigor but also has real world applicability. We also have a
process to determine the difficulty rating of each question. The individual rating then contributes to an
overall cut score for each exam form. To ensure each form has equal assessment standards, cut scores
are set on a “per exam form” basis. Depending on which exam form is challenged, cut scores can range
from 60% to 85%.

* CCNA
CCNA (Cisco Certified Network Associate) is an information technology (IT) certification from Cisco
Systems. CCNA certification is an associate-level Cisco Career certification. o achieve a CCNA
certification, candidates must earn a passing score on Cisco exam 200-301. At the completion of the
exam, candidates receive a score report along with a score breakout by exam section and the passing
score for the given exam. The exam tests a candidates knowledge and skills required to install, operate,
and troubleshoot a small to medium size enterprise branch network. This exam covers a broad range of
fundamentals, including network fundamentals, network access, IP connectivity, IP services, security
fundamentals, automation and programmability.

* CompTIA Security+
CompTIA Security+ is the first security certification IT professionals should earn. It establishes the core
knowledge required of any cybersecurity role and provides a springboard to intermediate-level
cybersecurity jobs. Security+ incorporates best practices in hands-on trouble-shooting to ensure security
professionals have practical security problem-solving skills. Cybersecurity professionals with Security+
know how to address security incidents – not just identify them. Security+ is compliant with ISO 17024
standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and
government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an
accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since
January 1, 2011.

Step 2: Investigate positions available within cybersecurity

Glassdoor is one of the largest job sites worldwide. Using your browser of choice, access glassdoor.com and
search to find cybersecurity jobs available that were posted within the last two weeks. Adjust the search as
Questions:
you would like. You can search for jobs in your area or an area that you would like to live and work in.
a. How many new job listings were posted within the last two weeks? I found 94 Cybersecurity in Jakarta.
Type your answers here.

b. What is the salary range for the top 10 listings? Salary ranges for the top 10 lists are $ 40,000 to $
100,000

 2018 - 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 2 of 3 www.netacad.com
Lab - Becoming a Defender

c. What are the most common qualifications required by employers?

* experience on a security team.
* Ability to identify, understand and communicate the threat-scenarios associated with
vulnerabilities and weaknesses.
* Having deep technical skills in the field of information security architecture and penetration
testing
* CyberSecurity industry certifications

d. What industry certifications are required by these employers?

* CEH
* OSCP
* CHFI
* CCNA

e. Do any of the certifications match the ones that you found in Step 1a? yes, there is CEH, CCNA and
OSCP
Type your answers here.

f. Investigate online resources that allow you to legally test your hacking skills. These tools allow a novice
with limited cyber security experience to sharpen their penetration testing skills. One such site is Google
Gruyere (Web Application Exploits and Defenses). What kinds of challenges can you find?
I found some challenges there, such as :
* XSS (Cross-Site Scripting)
* Client-State Manipulation
* Cross-Site Request Forgery (XSRF)
* Cross Site Script Inclusion (XSSI)
* Path Tranversal
* DoS (Denial of Service)
* Code Execution
* Configuration Vulnerabilities
* AJAX Vulnerabilities
* SQL injection
Type your answers here.

End of document

 2018 - 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 3 of 3 www.netacad.com