• Online, Self-Paced
Course Description

Endpoint devices such as laptops, desktop, and smartphones are potential malware entry point to the network. Explore spyware and adware, rootkits, ransomware, worms and viruses, and social engineering. Examine various techniques such as malware scanning, malware policies, whitelisting, and windows application blacklists to mitigate these threats.

Learning Objectives

System Security Certified Practitioner (SSCP 2018): Malware & Endpoint Security

  • Course Overview
  • describe how comparing current activity to a baseline can identify suspicious activity, such as insider threats and data theft attempts
  • explain how trojans can deliver malware such as spyware and adware
  • explain how rootkits, trapdoors, and backdoors work
  • describe how ransomware locks a system or data
  • compare and contrast worms and viruses
  • describe common examples of phishing email messages and how HIDS and host-based firewalls alone cannot protect systems
  • configure Windows Defender settings
  • configure Microsoft System Center Endpoint Protection
  • explain the benefits of whitelisting
  • use Group Policy to configure application blacklists
  • describe how DDoS and botnets present a threat
  • use Microsoft Group Policy to control USB removable media
  • secure end point devices

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.