Cybersecurity Course

As a VI student, you will be given access to online learning materials in our e-learning portal.

To get you ready for learning, this essential pre-work will familiarise you with the basics of the key concepts and tools we will be using throughout the course.

Although you will learn these topics remotely before you arrive in class, you won’t be far away from the resources of the VI community. Make use of our Telegram channel to leverage connections with students, alumni, instructors and experts. At the end of your pre-work, you’ll be ready for the fast pace on campus!

After the course, you can choose to participate in follow-up sessions with your instructor, either in a group and/or individually, included as part of the course fee.

Tutorials:

• Internet, sea of opportunities and threats
• Types of cyber criminals
• Cybersecurity goals of Confidentiality, Integrity, and Availability
• Types of cyber-attacks
• Security trends in Singapore and across the globe
• Example of Open-Source Intelligence attack
• Introduce OpenAI for brainstorming case studies and generating detailed explanations of security incidents

Activity:

• Check on account exposure
• Case study on cybersecurity goals on organisations
• Review on recent security incidents affecting organisations in Singapore and map to cybersecurity goals
• Introduce the capstone project to students

• Cyber-security snapshot
• Cyber-Attack chain
• Reconnaissance
• Weaponisation
• Delivery
• Exploitation
• Installation
• Command and Control
• Actions on Objective
• Security technologies
• Anti-virus
• Security monitoring
• Intrusion detection and prevention systems
• Identity and access management
• Biometrics
• Security scanners
• Security controls
• Demonstration of hacking examples mapped to the Cyber-Attack Chain phases
• Threat Modeling against organisation

Activity:

• Map security controls against cyber-attack chain
• Threat modeling
• Let’s rob a bank hacker simulation

Tutorials:

• Password security
• Brute-force attacks
• Commonly used passwords
• Previously exposed passwords
• Password strength
• Multi-Factor Authentication
• Account security
• Email accounts
• Social media accounts
• Bank accounts
• Open-Source Intelligence (OSINT)
• Phishing 
• Scams type related to organisations
• Fake bank’s website
• SMS verification

Activity:

• Password strength checker
• Enable multi-factor authentication in accounts
• Adjust privacy settings for social media accounts
• Check for activities online of accounts
• Search for information of a company using Open-Source Intelligence

Tutorials:

• Cybersecurity risks examples to organisations
• Security risks and recommendations relating to
• Wireless
• Mobile
• Laptop
• USB device
• Web cameras
• Risk management
• Importance of Cybersecurity Risk Assessment
• Risk identification
• Examples
• Risk analysis
• Risk evaluation
• Guidelines on Risk Management Practises – Internet Controls for organisations in Singapore
• Vendors’ risk management
• Service providers’ risk management
• Insider threats’ risk management

Activity:

• Check for shared folders in computer
• Check for mobile application permission settings
• Update computers and mobile devices
• Enable antivirus and firewall on computers
• Determine cyber risks and responses for an organisation

• Tactics and techniques of social engineering
• Key principles with examples on organisations
• Authority
• Intimidation
• Social proof
• Scarcity
• Urgency
• Familiarity
• Social engineering vectors
• Vishing
• Phishing
• Smishing
• Impersonation
• Distinguish between a real and a scam email
• Distinguish between a real and a phishing website
• The Dark Web

Activity:

• Review third-party access to accounts
• Set browser security
• Design security program to prevent social engineering attacks

• Personal Data Protection Act (PDPA)
• Objectives of securing our personal data
• How PDPA works
• Applying PDPA to personal and work activities
• Protecting personal data online
• MAS TRM
• Establish Sound and Robust Technology Risk Governance and Oversight
• Maintain Cyber Resilience

Activity:

• Case study on commission decisions

• Why prepare for incidents?
• Assumed breach mindset
• Incident preparedness and response in organisation  
• Preparation
• Detection and analysis
• Containment and eradication
• Post-incident recovery
• Incident response checklist
• Cyber-Security career tracks

Activity:

• Incident response simulation
• Capstone project discussion

Participants will be required to identify cyber-security issues facing companies in Singapore, and to provide security recommendations against this issue based on recent security trends in Singapore.

The capstone project will culminate your learning by applying the security policies, awareness and technology learnt into a stakeholder presentation that includes:

• Addressing real-world security cases in Singapore
• Identify risks to a organization
• Introduce security controls to address the identified risks