Essential cyber security knowledge, simple, jargon-busting video that provides easy-to-understand definitions for terminology commonly used to describe cyber threats and the technology and security measures used to protect data.

2 mins
Free

Nick Espinosa explains how internet culture fails to foster a common understanding of cybersecurity and threats online. His five laws, designed to help us think like a hacker, explain why human nature exposes people and businesses to vulnerabilities and risk.

7 mins
Free

James Lyne talks about the growing gap between the cybersecurity know-how of internet users and the skills and tactics of professional cyber criminals. .

55 mins
Free

Having a computer hacked can be life altering. We’re often fearful of hackers and those who want to engage in identity theft.

Adam Anderson is an ex-NSA agent and IT specialist and explains how hacking can be prevented.

13 mins
Free

Chris Domas is a cybersecurity researcher, operating on what’s become a new front of war, “cyber.” In this engaging talk, he shows how researchers use pattern recognition and reverse engineering to understand a chunk of binary code whose purpose and contents they don’t know.

16 mins
Free

Frank Heidt, cyber defense professional, offers a sobering historic, economic and demographic overview of the growing threat to the U.S. from Chinese cyber invasions. Heidt mixes humor with intellect as he places the audience on “high alert” through stories of espionage and intrigue.

18 mins
Free

Hacking is about more than mischief-making or political subversion. As Catherine Bracy describes in this spirited talk, it can be just as much a force for good as it is for evil. She spins through some inspiring civically-minded projects in Honolulu, Oakland and Mexico City — and makes a compelling case that we all have what it takes to get involved.

10 mins
Free

Glenn Greenwald was one of the first reporters to see — and write about — the Edward Snowden files, with their revelations about the United States’ extensive surveillance of private citizens. In this searing talk, Greenwald makes the case for why you need to care about sensitive information and privacy, even if you’re “not doing anything you need to hide.”

21 mins
Free

Most organisations fail to measure their human cyber risk.

Some measure security training uptake. Some go a little further and measure suspicious link-clicks or report-rates. But very few can answer key security questions such as “How has our human cyber risk changed over time?” and “Which security interventions reduce most risk?”.

This whitepaper explains that to answer such questions, the security industry needs meaningful metrics: to be able to benchmark; to be able to see progress; and to measure success and impact.

1 hour
Free

Much has been written about the benefits of a secure culture. By contrast, very little has been written about how to develop a secure culture.

This whitepaper reveals how today’s security teams can build a people-centric secure culture – one that places your people at the heart of cyber security. It also introduces C-CAT, CybSafe’s world-first Culture Assessment Tool that generates personalised recommendations for advancing the people-centric security culture of individual organisations.

Highlights include:

• Why security awareness training in its current form isn’t working
• The importance of “security ABC”
• How to measure and develop a people-centric security culture
• C-CAT – CybSafe’s Culture Assessment Tool
• C-CAT’s seven key dimensions scientifically proven to influence human cyber risk

1 hour
Free

Cybrary’s cyber security glossary provides the cyber security community with knowledge of and insight on the industry’s significant terms and definitions. 

This list contains key terminology and is one of the most extensive cyber security glossary/vocabulary resources online.

N/A
Free

Cyber security encompasses a much bigger, broader range of roles than most people realise. From operations to risk analysis to law, there are a huge variety of interesting career options – and you don’t necessarily have to study STEM subjects or have a degree in cyber security.

Cyber Security Challenge UK exists to inspire and enable more people from diverse backgrounds to become cyber security professionals. 

Their website offers free resources and information on typical roles within the industry, development paths and career advice.

N/A
Free

Most security awareness training attempts to raise awareness only. This blog explains the importance of security awareness training raising awareness, changing behaviour and building a culture of security, in order for it to be successful in decreasing risk.

3 mins
Free

Here, CybSafe explains why the old definition of security awareness training is too rudimentary – because it talks only of educating people and says nothing of ensuring they actually do anything with this security knowledge. 

Instead, of assuming people’s awareness will automatically change their behaviour, this blog explains the importance of behaviour training and a secure culture in successfully decreasing risk.

3 mins
Free

It covers big picture events driving cybercrimes and the top cyber risks affecting executives and their organizations. It provides examples of common cyberattacks; explains how good “security hygiene” helps to combat security threats; outlines key actions to avoid threats such as phishing, identity theft, hacking, and financial fraud; and explains how contract “firewalls” and third-party cyber risk management can help mitigate the most common cyber risks.

1 hour 46 mins
£7.00

In this course you’ll explore what makes information so valuable and how information security is about the balance of the CIA Triad: Confidentiality, Integrity and Availability.

10 hours
Free

It delivers an understanding of Information Security management issues including risk management, security standards, legislation, frameworks and business continuity.

3 days
Tbd

This course offers a high-level overview of the security landscape. 

It covers foundational concepts for the field of cybersecurity; 

examines various types of common threats and attacks; ways to protect our environments through tools and design; explains some advanced topics such as penetration testing; and provides context for the cybersecurity jobs market and key roles within the industry.

38 hours
Free

This course outlines the basic components of social engineering and how it is used.

Addressing different types of social engineering attacks, it provides hands-on experience using the Social Engineering Toolkit (SET). 

The course teaches behavioural and technical controls that can be implemented to reduce the likelihood of a successful social engineering attack. It explores fake social media profiles, phishing emails and malicious payload and gives you the experience of playing the “victim” by opening a malicious file.

The course explains why you should limit the information you share on social media and covers some basic items to include in your security awareness program. 

By the end of the course, you should understand:

1. Different types of social engineering attack
   
2. Behavioural and technical controls that can be used against them
   
3. How to communicate basic security awareness to others

2 hours
Free