CYB 403: Cyber Threat Intelligence and Cyber Conflict

 

 

 

Learning Outcomes
At the end of this course, students should be able to:
1. employ the techniques for detecting, responding to and defeating organised cybercrimes
and cyberwar activities;
2. analyse successful and unsuccessful advanced persistent threats and malware campaigns,
divergent national and international policies for combating cyber terrorism, and terrorist
tactics worldwide;
3. describe cyber threat intelligence and its role with the knowledge of the expectation of
organisations and analysts, and the indicators of compromise;
4. discuss the cyber tactical threat intelligence, the kill chain, intrusion analysis, indicator
lifecycle, cyber operational threat intelligence and strategic threat intelligence;
5. assess and learn the need for information sharing and peers, models and methods for
managing cyber intelligence, and master campaigns and threat actors;
6. evaluate the role and skills of a cyber threat intelligence analyst and the threat modelling;
and
7. identify the evolution of counterterrorism and cyber conflict.

Course Contents
Techniques for detecting, responding to and defeating organised cybercrimes and cyberwar
activities. Analysing successful and unsuccessful advanced persistent threats and malware
campaigns. Analyse divergent national and international policies for combating cyber terrorism
and terrorist tactics worldwide. Understanding Cyber threat intelligence – defining threats,
Understanding risk, Cyber threat intelligence and its rule, Expectations of organisations and
analysts, and indicators of compromise. Tactical threat intelligence. Role of a tactical threat
intelligence analyst, expected skills and tradecraft. The Kill Chain and Intrusion Analysis.
Indicator lifecycle. Introduction to operational threat intelligence – Role of an operational
threat intelligence analyst, Need for information sharing and peers. Models and methods for
managing intelligence, campaigns and threat actors. Introduction to strategic threat
Intelligence – role of a strategic threat intelligence analyst. Threat modelling, Organisational
change and security posturing. Event recording and incident sharing. Evolution of
counterterrorism and cyber conflict.