Topic outline

  • Module 7: IT Competency - Security


    Module Seven: IT Competency

       

    Warm Pacific Greetings, Salutations chaleureuses du Pacifique and welcome to the  CREWS Initiative SMARTMET Online Learning Courses.
    SPREP is the regional hub for Meteorological services in the Pacific and host of the PCC , our immediate audience will be the staff from the NMHSs (not limited to IT staff) and SPREP staff directly and indirectly involved in supporting Pacific SIDS.. The course content will include the fundamentals of systems and network administration, website development and maintenance, scripting, etc. Content shall be delivered by taking into consideration system and application environments in place at NMHSs and SPREP and have as its main objective enhancing the sustainability of IT tools in these institutions, and building on regional IT technical capacity.


    The objectives of the SMARTMET Training are:

    1.      To provide hands-on training to selected NMSs in the relevant Information Technology programmes associated with the operation of the SCOPIC, TKDB, Website technologies and use of WMO Information System.
    2.      To equip staff with the necessary skills and knowledge to
          • train other staff members on how to provide IT support for the operation of the above weather systems
          • adopt a security and risk based approach to IT operations and use of emerging technologies;
    3.      This will also be an opportunity for participants to share their experiences on the benefits and challenges in using these system in particular and how these could be addressed going forward.
    There are Seven Modules/Courses of the SMARTMET Training.






    • The objective of Module 7 is for participants to gain a basic understanding of Information technology concepts around information security and cybersecurity to safeguard operations and to ensure business continuity. 


       Module Seven Course Outcome:

       

      At the end of module you should be able to
      • Have an understanding of the primitives of information security
      • Knowledge of threat actors and vectors
      • Knowledge of Cloud models and security implications
      • Know how to assess and manage risks, controls and remediations
      • Have an understanding of security essentials in developing an effective security program


    • Instructions to completing the Module.
      You are expected to complete this module in four weeks. While our group will meet twice over zoom (in the beginning for introductions, and in the end for feedback) you must watch the learning videos and complete the quizzes. You have a final exam to be taken after the four weeks which you must pass to get the certificate - before the final feedback session
      Mandatory to Complete the Course  General Mandatory Action Icon
      To complete the course, you will need to attend (mandatory country) zoom meeting, as well as the feedback section.

      In order to complete the course you will have to meet the following requirements:
       1. Introduction Zoom: Meet your Instructor Christian Slaven and fellow participants in zoom meeting on date scheduled in Announcements
      2. Watch the subject videos and go through the reading materials provided. 
      3. You must post and join in the online Forum. Here you can post questions about the course, and also help each other through peer support.
      4. Complete the Quizzes. 

      5. Complete the final exam with a pass mark of 50%.
      6. Talanoa Feedback Zoom session: review and reflection on Module 7 with the Instructor

  • 1. Course Introduction Live Zoom Meeting

    • General Mandatory Action Icon Course Introduction Zoom Meeting 

      It is mandatory that you join the course introduction zoom meeting with the regional training team at SPREP Apia. You will meet your Instructor, Christian Slaven, and fellow participants. From there, the instructor will go over course expectations and objectives before you embark on self learning over the the duration of the course. 

  • 2. Introduction - IT Security Fundamentals

    Information Security and Cybersecurity are terms that have been used interchangeably by many but it must be noted that the two have some differences. Information Security is usually used in the context of the traditional internal ICT environment of an organisation. Cybersecurity is different in that it recognises that orgnisations security perimeter now extends beyond the traditional boundaries with the introduction of mobile, remote, IoT and cloud technologies. Cybersecurity programs recognize that organizations must be vigilant, resilient, and ready to protect and defend every ingress and egress connection as well as organizational data wherever it is stored, transmitted, or processed. In this topic, we will discuss the fundamental concepts of cybersecurity and information security. We will also discover the difference between cybersecurity threats, vulnerabilities, and exploits, and explore the most common cybersecurity threats, as well as common software and hardware vulnerabilities

  • 3. Cloud Computing and Security

  • 4. Access Control Models

  • 5. Types of Attacks and Vulnerabilities

  • 6. Final Assessment

    • Exam Quiz

      Exam Overview

      The exam comprises 40 multiple choice questions. Students should select the answer they deem to be most correct according to the content and material presented in this course.

      Quick Facts
      Exam pass mark: 50%
      Time limit: 1 hour
      Attempts allowed: 1

      References
      This is an open book exam and students are permitted to refer to any course material during the exam. Students are not permitted to obtain assistance from any other person during the exam.


      Content Sources

      The questions are taken from what is covered in the module, the discussions and any other course materials provided. Students are expected to be familiar with all content sources to excel in the exam. The questions are in no particular order, and may not be grouped according to any content or topic arrangements. 

      Time

      You will have one hour to complete the exam. If you are disconnected from the exam you can resume when you reconnect, but the clock will not stop in your absence. Please ensure that you have a full uninterrupted hour available to you before beginning the exam. Students are expected to manage their own technical requirements for a reliable device and internet access, however if you experience serious technical issues please contact instructor christians@sprep.org as soon as practical. 


      Results

      Exams are marked automatically and results are only provided via the Certificate of Achievement link, located directly below this information on the course page. If the link is blanked out with 'Not available unless: You achieve a required score in Exam', you have been unsuccessful in achieving a passing grade of 50% or more in the exam. If you can follow through the Certificate of Achievement link showing 'Sorry, you did not pass', you have been unsuccessful in achieving a passing grade of 50% or more in the exam.
      We are unable to send a copy of the correct answers after an exam attempt due to the integrity of the course, whether you have been successful or unsuccessful.


  • 7. What Next?