for South Carolina Cybersecurity Fundamentals — South Carolina Cybersecurity Fundamentals
Total Standards: 103Mapped: 98Completion: 95%
A.1
Review school safety policies and procedures.
1.1 Welcome to Cybersecurity Fundamentals
A.2
Review classroom safety rules and procedures.
1.1 Welcome to Cybersecurity Fundamentals
A.3
Review safety procedures for using equipment in the classroom.
1.1 Welcome to Cybersecurity Fundamentals
A.4
Identify major causes of work-related accidents in office environments.
1.1 Welcome to Cybersecurity Fundamentals
A.5
Demonstrate safety skills in an office/work environment.
1.1 Welcome to Cybersecurity Fundamentals
B.1
Identify the purpose and goals of a Career and Technology Student Organization (CTSO).
1.1 Welcome to Cybersecurity Fundamentals
B.2
Explain how CTSOs are integral parts of specific clusters, majors, and/or courses.
1.1 Welcome to Cybersecurity Fundamentals
B.3
Explain the benefits and responsibilities of being a member of a CTSO.
1.1 Welcome to Cybersecurity Fundamentals
B.4
List leadership opportunities that are available to students through participation in CTSO conferences, competitions, community service, philanthropy, and other activities.
1.1 Welcome to Cybersecurity Fundamentals
B.5
Explain how participation in CTSOs can promote lifelong benefits in other professional and civic organizations.
1.1 Welcome to Cybersecurity Fundamentals
C.1
Demonstrate proficiency and skills associated with the use of technologies that are common to a specific occupation (e.g., keying speed).
7.10 Command Line Interface
C.2
Identify proper netiquette when using e-mail, social media, and other technologies for communication purposes.
2.1 Digital Footprint and Reputation
C.3
Identify potential abuse and unethical uses of laptops, tablets, computers, and/or networks.
1.3 What is Cybersecurity?
2.3 Internet Safety
C.4
Explain the consequences of social, illegal, and unethical uses of technology (e.g., cyberbullying, piracy; illegal downloading; licensing infringement; inappropriate uses of software, hardware, and mobile devices in the work environment).
2.2 Cyberbullying
2.6 Creative Credit & Copyright
2.7 Hacking Ethics
C.5
Discuss legal issues and the terms of use related to copyright laws, fair use laws, and ethics pertaining to downloading of images, photographs, documents, video, sounds, music, trademarks, and other elements for personal use.
2.6 Creative Credit & Copyright
2.7 Hacking Ethics
C.6
Describe ethical and legal practices of safeguarding the confidentiality of business-and personal-related information.
2.4 Privacy & Security
2.7 Hacking Ethics
C.7
Describe possible threats to a laptop, tablet, computer, and/or network and methods of avoiding attacks.
2.4 Privacy & Security
5.7 Digital Certificates
7.6 Application Security
7.7 Browser Configuration
8.2 Malware Types and Prevention
D.1
Demonstrate creativity and innovation.
6.1 Project: Steganography
D.2
Demonstrate critical thinking and problem-solving skills.
6.1 Project: Steganography
D.3
Demonstrate initiative and self-direction.
6.1 Project: Steganography
D.4
Demonstrate integrity.
1.1 Welcome to Cybersecurity Fundamentals
6.1 Project: Steganography
D.5
Demonstrate work ethic.
1.1 Welcome to Cybersecurity Fundamentals
D.6
Demonstrate conflict resolution skills.
1.1 Welcome to Cybersecurity Fundamentals
D.7
Demonstrate listening and speaking skills.
1.1 Welcome to Cybersecurity Fundamentals
D.8
Demonstrate respect for diversity.
10.10 Impact of the Internet
D.9
Demonstrate customer service orientation.
9.1 Project: Security Assessment Report
12.1 Methodology
12.2 Support Practice
D.10
Demonstrate teamwork.
1.1 Welcome to Cybersecurity Fundamentals
6.1 Project: Steganography
E.1
Demonstrate global or “big picture” thinking.
10.10 Impact of the Internet
E.2
Demonstrate career and life management skills and goal-making.
1.1 Welcome to Cybersecurity Fundamentals
E.3
Demonstrate continuous learning and adaptability skills to changing job requirements.
1.1 Welcome to Cybersecurity Fundamentals
E.4
Demonstrate time and resource management skills.
1.1 Welcome to Cybersecurity Fundamentals
E.5
Demonstrates information literacy skills.
2.5 Information Literacy
E.6
Demonstrates information security skills.
2.4 Privacy & Security
E.7
Demonstrates information technology skills.
2.3 Internet Safety
11.1 Internal Components
E.8
Demonstrates knowledge and use of job-specific tools and technologies.
9.1 Project: Security Assessment Report
12.1 Methodology
12.2 Support Practice
E.9
Demonstrate job-specific mathematics skills.
5.4 Hash Functions
5.5 Hash Function Development
E.10
Demonstrates professionalism in the workplace.
1.1 Welcome to Cybersecurity Fundamentals
9.1 Project: Security Assessment Report
12.1 Methodology
12.2 Support Practice
E.11
Demonstrate reading and writing skills.
1.1 Welcome to Cybersecurity Fundamentals
9.1 Project: Security Assessment Report
12.1 Methodology
12.2 Support Practice
E.12
Demonstrates workplace safety.
1.1 Welcome to Cybersecurity Fundamentals
F.1
Define terms related to cyber security (e.g., cyber security, information assurance, risk, risk management, cyber security services).
1.3 What is Cybersecurity?
1.4 Impact of Cybersecurity
13.1 Identifying Risks
13.3 Risk Response
F.2
Explain the importance of information and internet security (e.g., browser, cloud, network).
2.4 Privacy & Security
7.6 Application Security
7.7 Browser Configuration
F.3
Explain the concepts of confidentiality, integrity, and availability (CIA).
1.5 The CIA Triad
F.4
Identify the concepts of cyber security risk management. (e.g., vulnerability identification, management, and mitigation; active and passive reconnaissance; testing port scanning, automation).
Describe cyber security threats to an organization and why organizations need to manage risk.
13.1 Identifying Risks
13.2 Assessing Risks
13.3 Risk Response
F.7
Research potential consequences of various forms of security incidents.
8.8 Types of SQLi and Prevention
13.1 Identifying Risks
13.2 Assessing Risks
13.3 Risk Response
17.11 Types of SQLi and Prevention
F.8
Compare and contrast the various types of security (e.g., physical security, technological, administrative).
7.8 System Administration
18.2 Environmental Controls
F.9
Research national or industry standards/regulations that relate to cyber security and their impact on people, processes, and technology (e.g., news, reports, policies, subscriptions, incidents).
2.7 Hacking Ethics
19.4 Level 4: Data and Licenses
F.10
Investigate the origins and history of cyber security and its impact on society.
1.3 What is Cybersecurity?
4.2 History of Cryptography
F.11
Describe the role that cyber security plays in the private or public sector.
7.4 Software and Applications
7.5 Software Licenses
F.12
Discuss and develop a code of ethics as related to the field of cyber security.
2.7 Hacking Ethics
13.4 Penetration Testing
G.1
Describe the characteristics of cyber threats, attacks, and vulnerabilities
1.3 What is Cybersecurity?
13.1 Identifying Risks
G.2
Analyze types of current cyber threats (e.g., DDoS, Phishing, cracking, social engineering).
1.4 Impact of Cybersecurity
7.6 Application Security
7.7 Browser Configuration
8.2 Malware Types and Prevention
8.6 Common Security Problems
8.8 Types of SQLi and Prevention
17.9 Common Security Problems
17.11 Types of SQLi and Prevention
G.3
Categorize sources/originators of different types of malicious attacks (e.g., nation states, cyber criminals, hacktivists, insiders).
1.4 Impact of Cybersecurity
G.4
Compare and contrast cyber-attack surfaces of differing organizations.
Explain types of attacks (e.g., wireless, application, social engineering, buffer overflow attacks, backdoor).
8.1 Network Attacks
8.2 Malware Types and Prevention
13.2 Assessing Risks
G.8
Define strategies necessary to prevent attacks.
13.2 Assessing Risks
H.1
Define terms related to computer networking (e.g., LAN, WAN, wireless, protocols, topology, firewalls).
10.7 Routing
10.8 Packets & Protocols
11.5 Network Options
11.6 Network Communication
H.2
Compare and contrast OSI and TCP/IP models and encapsulation concepts.
H.3
Compare and contrast wired versus wireless networks.
11.5 Network Options
11.8 Private Networks
18.4 Private Networks
H.4
Examine the concept of the internet as a network of connected systems.
10.7 Routing
H.5
Design a basic network topology.
11.5 Network Options
11.8 Private Networks
18.4 Private Networks
I.1
Define terms related to network security (e.g., routing, perimeter networks, security layering, Virtual Private Network (VPN), isolation).
8.1 Network Attacks
11.6 Network Communication
11.8 Private Networks
18.4 Private Networks
I.2
Explain the concepts of protocol security (e.g., protocol spoofing, tunneling, network sniffing, denial of service).
13.2 Assessing Risks
I.3
Analyze and implement security layering.
7.8 System Administration
13.4 Penetration Testing
I.4
Identify vulnerabilities and common attack methods.
13.2 Assessing Risks
I.5
Use strategies necessary to prevent network attacks.
8.1 Network Attacks
8.8 Types of SQLi and Prevention
13.2 Assessing Risks
17.11 Types of SQLi and Prevention
I.6
Identify tools and techniques used for security layering.
13.4 Penetration Testing
I.7
Determine characteristics of firewalls (hardware and software) and when to use them.
11.3 Network Devices
11.6 Network Communication
I.8
Set up Port/Network Address Translation (NAT/PAT).
11.8 Private Networks
18.4 Private Networks
I.9
Explain how network addresses impact network security (e.g., IPv4 and IPv6 addressing, CIDR notation, public vs private networks.
11.8 Private Networks
18.4 Private Networks
I.10
Use a basic command line interface (Windows and Linux) to configure communications (e.g., ipconfig, ifconfig, and net config, ping).
11.7 Network Management
J.1
Compare and contrast common operating systems (e.g., Windows, Linux, iOS, Android).
J.2
Identify best practices for protecting operating systems (e.g., access control, separation of duties, least privilege).
7.8 System Administration
J.3
Compare and contrast common file systems (e.g., FAT, NTFS, HFS).
7.2 Comparing Operating Systems
J.4
Describe the various types of file permissions (e.g., registry, Active Directory, basic and advanced).
7.8 System Administration
J.5
Implement group and audit policies.
7.8 System Administration
J.6
Explain the purpose and location of security and auditing logs.
7.8 System Administration
J.7
Define virtualization and identify its advantages and disadvantages.
J.8
Define strategies necessary to prevent operating system attacks.
7.6 Application Security
K.1
Define terms related to identity, authorization, and authentication (e.g., passwords, biometrics, multi-factor, certificates).
2.4 Privacy & Security
K.2
Describe the various types of permissions (e.g., basic, administrative, elevated).
7.8 System Administration
K.3
Identify types of access control (e.g., role-based access control (RBAC), mandatory access control, discretionary-based control).
7.8 System Administration
7.9 Access Control
18.6 Access Control
K.4
Describe the importance of Multifactor authentication.
7.8 System Administration
7.9 Access Control
18.6 Access Control
K.5
Analyze best practices for end-user password development and usage.
2.4 Privacy & Security
K.6
Identify the system administrator’s role in setting system policies and procedures.
7.8 System Administration
K.7
Compare and contrast backup and restore methods.
7.6 Application Security
K.8
Explain the importance of disaster recovery and business continuity planning (e.g., disaster recovery plans and controls, business continuity plans, backups).
Define cryptography and its related terms (e.g., encryption, decryption, public key, and private key).
5.2 Encryption Algorithms
5.3 Advanced Cryptography
5.6 Asymmetric Encryption
L.2
Identify encryption methods (e.g., symmetric and asymmetric).
5.2 Encryption Algorithms
5.3 Advanced Cryptography
5.6 Asymmetric Encryption
L.3
Determine appropriate uses for encrypting data and connections (e.g., email, files, network, VPN).
11.8 Private Networks
18.4 Private Networks
L.4
Explain how the design and functionality of various encryption methods support the security of data.
5.6 Asymmetric Encryption
L.5
Demonstrate various encryption techniques (e.g., encryption algorithms, Encrypting File System (EFS), hashing, public and private keys, Public Key Infrastructure (PKI), token devices, Trusted Platform Module (TPM), Transport Layer Security (TLS).
5.3 Advanced Cryptography
5.6 Asymmetric Encryption
M.1
Analyze and differentiate between types of system attacks (e.g., operating systems, files, and applications).
7.6 Application Security
M.2
Implement security patches and updates (e.g., Active X, Java).
Monitor security events and know when escalation is required (e.g., role of SIEM and SOAR, packet captures, log file entries, identifying suspicious events).
N.2
Explain digital forensics and attack attribution processes (cyber kill chain, sources of evidence, evidence handling).
20.1 Digital Forensics
N.3
Explain the impact of compliance frameworks on incident handling (e.g., compliance frameworks (GDPR, HIPAA, PCI-DSS, FERPA, FISMA), reporting and notification requirements).
N.4
Describe the elements of cybersecurity incident response (e.g., policy plan procedure elements, incident response lifecycle stages).
