The AWS Security Pillar
The Security Pillar of the AWS Well-Architected Framework is a set of best practices for building and operating secure and compliant systems on the AWS cloud platform. It provides a…
Learning
AWS Security Reference Architecture
AWS Security Reference Architecture is a collection of security best practices, architectural patterns, and recommended designs for securing cloud-based workloads. It is an extensive guide that provides organizations with a…
SANS White Papers Repository
Website: https://www.sans.org/white-papers/ The SANS White Papers (formerly the SANS Institute Reading Room) is a free online library of whitepapers, case studies, and research articles focused on cybersecurity. The resources cover…
Total Defense – Security Tip of the Day
Website: https://www.totaldefense.com/security-blog/category/security-tip-of-the-day/ Total Defense offers a short tip of the day covering a variety of cybersecurity and IT related topics. Use this if you need a quick tip for the…
University of Tennessee HSC: Tip of the Week
Website: https://uthsc.edu/its/cybersecurity/tip-of-the-week.php Although a college health sciences center doesn’t seem like a source strongly related to cybersecurity, this site consistently updates with various tips you can reference. Use these if…
STIX
Website: https://oasis-open.github.io/cti-documentation/stix/intro Structured Threat Information Expression (STIX™) is a language and serialization format used to exchange cyber threat intelligence (CTI). This is a common, standardized way to share threat information…
Open Cybersec Training
Website: https://opensecuritytraining.info/Welcome.html Disclaimer: This site has undergone a re-design branded as “OST2” that has fewer classes and asks you to sign-in. The link referenced here takes you to the older…
The Motherlist Glossary Of Cybersecurity And Cybercrime Definitions
Website: https://cybersecurityventures.com/cybersecurity-glossary/ This meta-list is a link to several other glossaries of Cybersecurity terms. Find out common abbreviations, compare definitions, and generally up your communication game.
FIRST – Forum of Incident Response and Security Teams
Website: https://www.first.org FIRST is the Forum of Incident Response and Security Teams. Their site includes frameworks for CSIRT (Computer Security Incident Response Teams) and PSIRT (Product Security). They also have…
Open Source Sec Testing Methodology Manual
Website: https://www.isecom.org/research.html The Open Source Security Testing Methodology Manual is a complete methodology for the testing, analysis and measurement of operational security towards building the best possible security defenses. The…