Getting Hands on with Spyderisk

Topic outline

• Select topic Welcome!

  Welcome!

  Collapse all Expand all

  HELLO!

  Welcome to 

  Getting Hands on with Spyderisk

  Thank you for joining us - lets get started...

  

  Spyderisk is an automated cybersecurity risk analysis tool capable of easily identifing cybersecurity threats, regulatory compliance needs, and threat control and mitigation strategies.

  It continues to be developed as an open source resource by a team of academics and experts from the IT Innovation team at the University of Southampton and the wider Spyderisk community - which we invite you to join.

  In this course you will learn how to:

  1. Use Spyderisk to model the data, software, hardware, people and spaces in your system
  2. How to run a cybersecurity risk assessment
  3. How to model the application of security controls
  4. How to understand threats and attack paths

  You will access a fully functional training instance of Spyderisk and be able to play with it.

  However, any models you create using the training version of Spyderisk will be deleted every Sunday night, so be sure to download anything you want to keep! 

  By the end of this course you should be comfortable using Spyderisk to conduct an automated cybersecurity risk assessment for your specific system and to identify what security controls you can introduce to mitigate the risks.

  The Spyderisk training course is brought to you by:

           

  Dr Stephen Phillips                         Dr Nic Fair

  Spyderisk Technical Lead                Course Designer

  from the IT Innovation group at the University of Southampton.

   
• Select topic Topic 1 - Your Spyderisk Account

  Topic 1 - Your Spyderisk Account
  • Select activity Generate Your Account Credentials

    

    Generate Your Account Credentials Lesson

    Mark as done
• Select topic Topic 2 - Getting Started with Spyderisk

  Topic 2 - Getting Started with Spyderisk
  • Select activity Spyderisk Dashboard

    

    Spyderisk Dashboard Lesson

    Mark as done
• Select topic Topic 3 - Modelling Data and Processes

  Topic 3 - Modelling Data and Processes
  • Select activity Modelling Data and Process

    

    Modelling Data and Process Lesson

    Mark as done
• Select topic Topic 4 - Modelling Hosts and Network Assets

  Topic 4 - Modelling Hosts and Network Assets
  • Select activity Modelling Hosts and Network Assets

    

    Modelling Hosts and Network Assets Lesson

    Mark as done
• Select topic Topic 5 - Modelling People and Spaces

  Topic 5 - Modelling People and Spaces
  • Select activity Modelling People and Spaces

    

    Modelling People and Spaces Lesson

    Mark as done
• Select topic Topic 6 - Finalising the Model

  Topic 6 - Finalising the Model
  • Select activity Finalising the Model

    

    Finalising the Model Lesson

    Mark as done
• Select topic Topic 7 - Assigning Impact Levels and Conducting Risk Assessment

  Topic 7 - Assigning Impact Levels and Conducting Risk Assessment
  • Select activity Impact Levels and Calculating Risk

    

    Impact Levels and Calculating Risk Lesson

    Mark as done
• Select topic Topic 8 - Applying Controls

  Topic 8 - Applying Controls
  • Select activity Applying Controls

    

    Applying Controls Lesson

    Mark as done
  • Select activity ACME Sales [Test] model

    

    ACME Sales [Test] model File

    Mark as done

    Download the example system model to check against your version

• Select topic Topic 9 - Understanding the Results - Threats and Attack Paths

  Topic 9 - Understanding the Results - Threats and Attack Paths
  • Select activity Threats and Attack Paths

    

    Threats and Attack Paths Lesson

    Mark as done
• Select topic The Spyderisk Community

  The Spyderisk Community
  • Select activity The Spyderisk Community

    

    The Spyderisk Community Lesson

    Mark as done