Network and Communications Security from Coursera

Course 5: Network and Communications Security

Welcome to course five: network and communication security. As we know, the explosive growth in networks, connectivity, and communications has paved the way for unprecedented transformation of business, personal, and government services into electronic, web enabled forms. This growth in e-business and e-commerce greatly expanded the threat surface. Fraudsters, criminals, unscrupulous business competitors, nation states, and non-nation state actors can take harmful actions against others worldwide. For decades, the world has operated on what is basically a network monoculture. One set of protocols and standards are used to power most of the internet, the worldwide, web e-commerce, and e-business. These standards include the open systems interconnection seven layer model from international organization for standardization and transmission. And the control protocol over internet protocol model from internet engineering taskforce. Almost every laptop, many smart devices, and other such end points use these standards to communicate with servers, and applications, and businesses, and governments. Therefore these models, or protocol stacks become our map of the threat surface. Security professionals need to have a solid understanding of modern networks and internet work concepts, techniques, technologies, and security issues. Their work is like police patrols, because they need to be familiar with the neighborhood's environment. Security professionals need to know the best ways to keep the neighborhood secure and to defend against attacks. The need for such a policing mentality is particularly urgent if the company has limited or no remote visibility into its operational technology systems. For this course, in module one, we start with a brief orientation to the network neighborhood, through the open systems interconnection seven layer, and transmission control protocol over internet protocol models. Then, we dive into all eight layers of this combined protocol stack. Introducing the key technologies at each layer and their regular use. In module two, we look at the various protocols that run on top of this architecture. In module three, we focus on attack and defensive strategies and tactics and build on the industry leading approach to put threat surface analysis into both the attackers and defenders operational context. In the last module, we bring these ideas together into a network security management and monitoring perspective. Now, let's discuss these four modules in detail.

Course 5 Learning Objectives

After completing this course, the participant will be able to: 

L5.1 - Recognize layers of the OSI model, their functions and attacks present at each layer.

L5.2 - Identify commonly used ports and protocols.

L5.3 - Select appropriate countermeasures for various network attacks.

L5.4 - Summarize best practices for establishing a secure networked environment.

Course Agenda

Module 1: Apply the Fundamental Concepts of Networking (Domain 6 - Network and Communications Security)

Module 2: Securing Ports and Protocols (Domain 6 - Network and Communications Security)

Module 3: Network Attacks and Countermeasures (Domain 6 - Network and Communications Security)

Module 4: Manage Network Security (Domain 6 - Network and Communications Security)

Who Should Take This Course: Beginners

Experience Required: No prior experience required

What's inside

Syllabus

Before the days of networks, it was much, much easier to keep information systems safe and secure. As soon as we started interconnecting them, you might say, the threat surface went global. That’s what this chapter has taken a deep and broad look at.   We started with the architectural concepts on which the internet is built and how these concepts across the seven layers of ISO’s Open Systems Interconnection model work together to provide systems builders with standards and practices to meet. This model is also useful when identifying threat surfaces, performing threat modeling and analysis and in implementing a defensive strategy. The IETF’s network model, known as TCP/IP, complements the OSI 7-Layer model; together both are powerful intellectual forces in the systems and security marketplaces. Their layers of abstraction and their use of encapsulating functions into protocols has meant that for over 40 years the internet has continued to provide services as it has scaled out to support billions of end users around the world.  Security in a networking environment must recognize that attacks can start at any level, from the physical layer of cables and wireless connections to the applications layer and beyond. More importantly, a growing number of very damaging attacks are being conducted by advanced persistent threat (APT) actors, who demonstrate a degree of technical skill and operational sophistication rivaling that of many nations’ security and intelligence services. Even the smallest of organizations, such as a SOHO startup, can find itself swept up in an APT’s campaign of attack. These attacks often use fraud as a major ingredient, which they achieve by injecting falsified data such as invoices, transactions or even database updates directly into target systems, and, in most cases, all by way of remote access over the internet. The MITRE ATT&CK framework, as we saw, provides a continually updated set of current threat intelligence, attack modeling and mitigation strategies to help deal with network attack across enterprise, mobile and industrial control or operational technology systems.  From software-defined networks and collaboration platforms to traditional remote access capabilities, dealing with COVID-19 has demonstrated how much our modern world depends upon reliable, safe and resilient internetworking to get business and governance securely conducted. It has demonstrated the reliance of many business continuity plans on cloud-hosted, internet-powered virtualization of organizations, processes, resources and management functions. These demands for security and safety online will only continue to grow; this chapter has provided insights that can help security professionals make sure that their organization can meet those demands. 

Traffic lights

Read about what's good

what should give you pause

and possible dealbreakers

Explores the OSI model and TCP/IP, which are foundational for understanding network communications and security protocols, providing a strong base for beginners

Examines network attacks and countermeasures, building on the industry-leading MITRE ATT&CK framework, which is a valuable resource for security professionals

Discusses network security management and monitoring, providing a practical perspective on securing networked environments, which is essential for beginners

Requires familiarity with the OSI model and TCP/IP, which may necessitate additional study for true beginners without any prior networking knowledge

Reviews summary

Foundational network security concepts overview

According to students, this course offers a solid foundation for understanding network and communication security. Learners particularly appreciated the clear explanations of fundamental models like OSI and TCP/IP. Many found it a good starting point for those new to the field or preparing for certifications. While generally well-received, some reviewers noted the content is more theoretical and could benefit from more practical, hands-on exercises or real-world case studies to supplement the lectures. The course is best suited for beginners as described, and might be too basic for intermediate or advanced learners seeking in-depth technical skills.

Content is well-organized into modules.

"The course was well-structured with clear modules building upon each other."

"I liked how the course was broken down into distinct modules covering different aspects of network security."

"The syllabus is logical and easy to follow, making it simple to track progress through the material."

Well-suited for those new to the topic.

"As a beginner with no prior experience in network security, this course was easy to follow and understand."

"Definitely recommend this for beginners. It doesn't assume prior knowledge and explains things clearly from the ground up."

"Perfect introduction to the world of network security. It's tailored for those just starting out."

"If you are new to this, it is a good course. It starts from the very beginning of how networks work."

Provides essential basics for beginners.

"This course laid a very strong foundation for understanding network security concepts. It was exactly what I needed to start."

"I feel much more confident about the basics of OSI and TCP/IP after taking this course. The explanations were clear."

"Excellent starting point for anyone new to the field. It covers the essentials well and prepares you for more advanced topics."

"Provided a good overview of the fundamental concepts of network security, perfect for someone with no prior experience."

Insufficient detail for advanced learners.

"For someone with some existing knowledge, this course might be too basic. It stays at a high level."

"I was hoping for more in-depth coverage of specific protocols and attack techniques, but it only provided an overview."

"Doesn't go into enough technical detail for practitioners. It's more of a conceptual course."

"Useful for a broad understanding, but not sufficient if you need to implement specific security measures."

Emphasizes theory over practical application.

"While the theoretical concepts are covered well, I wish there were more practical examples or labs to reinforce the learning."

"The course felt a bit dry at times because it was heavily theory-based. More hands-on would make it more engaging."

"Good overview, but lacks the depth needed for practical application in a real-world job."

"Could use more focus on applying the concepts learned rather than just explaining them."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Network and Communications Security with these activities:

Review the OSI Model

Show steps

Reinforce your understanding of the OSI model to prepare for discussions on network security layers and vulnerabilities.

Browse courses on OSI Model

Show steps

Read about each of the seven layers of the OSI model.
Identify the functions of each layer.
Note common protocols associated with each layer.

Review 'Network Security Essentials'

Show steps

Gain a deeper understanding of network security principles and protocols by studying a comprehensive textbook.

View Network Security Essentials: Applications and... on Amazon

Show steps

Read the chapters related to network protocols and security standards.
Take notes on key concepts and definitions.
Work through the examples and exercises provided in the book.

Port Scanning Practice

Show steps

Develop practical skills in identifying open ports and services on a network, which is crucial for vulnerability assessment.

Browse courses on Port Scanning

Show steps

Set up a virtual lab environment with vulnerable machines.
Use Nmap to scan the target machines.
Analyze the scan results to identify open ports and services.
Research the vulnerabilities associated with the identified services.

Four other activities

Expand to see all activities and additional details

Show all seven activities

Create a Presentation on Network Segmentation

Show steps

Solidify your understanding of network segmentation by creating a presentation that explains its benefits and implementation strategies.

Browse courses on Network Segmentation

Show steps

Research different network segmentation techniques.
Outline the key benefits of network segmentation.
Create slides with clear explanations and diagrams.
Practice delivering the presentation.

Implement a Firewall Rule Set

Show steps

Gain hands-on experience in configuring firewall rules to protect a network from unauthorized access.

Browse courses on Firewall rules

Show steps

Choose a firewall platform (e.g., iptables, pfSense).
Define the network security policy.
Implement the firewall rules based on the policy.
Test the firewall rules to ensure they are working as expected.
Document the firewall configuration.

Review 'Practical Packet Analysis'

Show steps

Enhance your ability to analyze network traffic and identify security threats by studying packet analysis techniques.

View Putting Knowledge to Work on Amazon

Show steps

Read the chapters on packet capture and analysis techniques.
Practice capturing and analyzing network traffic using Wireshark.
Identify common network protocols and their characteristics.
Analyze network traffic for suspicious activity.

Contribute to a Network Security Project

Show steps

Deepen your understanding of network security by contributing to an open-source project related to network security tools or vulnerability scanning.

Browse courses on Open Source Security

Show steps

Find an open-source network security project on GitHub or GitLab.
Review the project's documentation and code.
Identify a bug or feature to work on.
Submit a pull request with your changes.

Career center

Learners who complete Network and Communications Security will develop knowledge and skills that may be useful to these careers:

Network Security Analyst

A network security analyst is responsible for monitoring and protecting an organization's computer networks. They analyze network traffic, identify security threats, and implement security measures. This course, with its focus on the OSI and TCP/IP models, provides a strong foundation for a network security analyst to understand network architectures and protocols. The course explores common ports and protocols as well as network attacks and countermeasures. The analyst uses this information to identify vulnerabilities and craft effective solutions, aligning with their need to secure the network environment. The course’s exploration of threat surface analysis makes it particularly valuable.

See salaries and explore the career path for Network Security Analyst

Cybersecurity Specialist

A cybersecurity specialist focuses on protecting digital assets from unauthorized access, use, disclosure, disruption, modification, or destruction. This role includes a wide range of responsibilities, from implementing security protocols to responding to security incidents. This course on network and communication security will help the cybersecurity specialist to understand how networks function and how to secure them, which is essential in a world where almost all systems connect to a network. The course dives into network models, protocols, attacks, and countermeasures. The specialist is able to utilize this knowledge to create effective mitigation strategies. The course’s management of network security module is particularly helpful.

See salaries and explore the career path for Cybersecurity Specialist

Security Engineer

A security engineer designs, implements, and manages security systems and infrastructure. This role requires a deep understanding of network and system security. The course helps a security engineer understand network architecture through its discussion of OSI and TCP/IP models, and can explain how attacks work through its exploration of common attacks. The course's modules on securing ports and protocols, implementing countermeasures, and managing network security provide the tools needed to engineer secure systems. A security engineer benefits from the course’s hands-on approach to implementing the security controls they design.

See salaries and explore the career path for Security Engineer

Network Administrator

A network administrator is responsible for the day-to-day operation and maintenance of a network. The role includes tasks such as configuring network devices, troubleshooting network problems, and ensuring network security. The course gives a network administrator a deeper understanding of network security, specifically the OSI and TCP/IP models. The course's modules on common ports and protocols are particularly relevant to the role's daily operations. A network administrator will benefit from the course's focus on attacks and countermeasures, as it enables them to better protect the networks they manage. The course also helps a network administrator gain new insights and improve security.

See salaries and explore the career path for Network Administrator

Security Architect

A security architect designs and plans the security infrastructure of an organization. They work with network and security teams to architect secure configurations. This course may be useful for this role, as it provides a solid overview of network security principles. A security architect will benefit from the course modules on network models, protocols, attacks, and countermeasures. It will help the architect understand the foundations of network security and implement effective strategies. An understanding of network security from the lowest to the highest layer is essential. The material on management of network security is key to this role.

See salaries and explore the career path for Security Architect

Information Security Analyst

An information security analyst protects an organization's data and systems from cyber threats. This involves analyzing security risks, implementing security policies, and responding to security incidents. The core principles of network security taught in this course apply directly to protecting information assets. Specifically, the modules covering the OSI and TCP/IP models, protocols, attacks, and countermeasures help an information security analyst understand the technical aspects of threats. The course’s modules on threat surface analysis and mitigation strategies will help an analyst implement effective security measures. This course may be helpful to an information security analyst looking to hone their skills.

See salaries and explore the career path for Information Security Analyst

Security Consultant

A security consultant assesses an organization's security posture, identifies vulnerabilities, and provides recommendations for improvement. This role requires a broad understanding of security concepts, including network security. The course's overview of network models, protocols, attacks, and countermeasures provides the necessary background to conduct thorough security assessments. The material on threat surface analysis can directly be used to identify weaknesses in an organization's infrastructure. Because this role requires a wide understanding, the information about how to manage network security is key. This course may be useful to a security consultant.

See salaries and explore the career path for Security Consultant

Penetration Tester

A penetration tester simulates cyberattacks on an organization's systems to identify vulnerabilities in their security. They need a deep understanding of network protocols, attack vectors, and security countermeasures. The course provides a foundational understanding of network attacks and the methods used to carry them out through its module on attacks and countermeasures, making it helpful to a penetration tester. The course's exploration of the OSI and TCP/IP models helps a penetration tester understand vulnerabilities and craft new kinds of attacks that can be used to test an organization's security strength. This course may be helpful for a penetration tester.

See salaries and explore the career path for Penetration Tester

System Administrator

A system administrator manages an organization's computer systems, including servers, operating systems, and applications. This often involves implementing and maintaining security configurations. This course offers a foundational understanding of network security, which is vital to the work of a system administrator. The course's examination of protocols, network attacks, and countermeasures helps the administrator to better secure all systems that connect to the network. By learning about the OSI and TCP/IP models, the system administrator will understand how infrastructure works, and implement solutions that are effective. This course may be useful to a system administrator.

See salaries and explore the career path for System Administrator

Incident Responder

An incident responder investigates and remediates security incidents and breaches. They need to have deep knowledge of attacks, protocols, and network traffic. This course provides the foundations for incident response work, as it delves into network models, protocols, and common attacks. The incident responder will be ready for the day-to-day work of understanding network attacks, implementing countermeasures, and managing network security. It is particularly relevant that the course includes coverage of the MITRE ATT&CK framework. This course may be useful to an incident responder.

See salaries and explore the career path for Incident Responder

Vulnerability Analyst

A vulnerability analyst identifies, assesses, and reports vulnerabilities in an organization's systems and networks. The role requires a detailed understanding of common network protocols, attack vectors, and security countermeasures. This course helps build a foundation for the role by providing an overview of the network models and protocols, common attacks, and countermeasures. This course’s coverage of threat surface analysis is helpful for the vulnerability analyst. This course may be useful for a vulnerability analyst.

See salaries and explore the career path for Vulnerability Analyst

Cloud Security Specialist

A cloud security specialist is responsible for securing cloud-based systems and data. This includes designing and implementing security controls, monitoring cloud environments and responding to security incidents. This course provides foundational knowledge of network security concepts, such as the OSI model, TCP/IP and common protocols. This is important for a cloud security specialist who needs an understanding of networking as cloud services rely more and more on network security. Understanding common attacks and countermeasures allows the specialist to develop effective cloud security policies. This course may be useful for a cloud security specialist.

See salaries and explore the career path for Cloud Security Specialist

IT Auditor

An IT auditor evaluates an organization's IT infrastructure, processes, and controls to ensure compliance and identify risks. They need a solid grasp of network and security concepts to perform thorough audits. This course provides a useful overview of network security principles, covering topics such as the OSI and TCP/IP models, common protocols, and security countermeasures. The IT auditor is able to use this knowledge to understand the systems they are auditing. By understanding the layers and the attacks that can happen at these layers, an auditor can more effectively test an organization's compliance. This course may be useful to an IT auditor.

See salaries and explore the career path for IT Auditor

DevSecOps Engineer

A DevSecOps engineer integrates security practices into the software development lifecycle. It requires a solid grasp of network principles and security practices in order to build secure applications that interact with networks. This course provides a basic understanding of network security, including network models, common attacks, and countermeasures. This allows the DevSecOps engineer to understand the vulnerabilities that may arise in modern development environments. Since the role must also integrate security, the management module of this course may be particularly relevant. This course may be useful for a DevSecOps Engineer.

See salaries and explore the career path for DevSecOps Engineer

Compliance Analyst

A compliance analyst ensures that an organization adheres to regulatory guidelines and security policies. This requires the compliance analyst to understand the technical aspects of information security, including network security principles. The course introduces the analyst to network models, protocols and security controls. This helps a compliance analyst to understand the technical aspects of networks and why security policies are important. It is also helpful in understanding the threat landscape. This makes the analyst better informed about the compliance needs of their organization. This course may be useful for a compliance analyst.

See salaries and explore the career path for Compliance Analyst

Reading list

We've selected two books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in Network and Communications Security.

Network Security Essentials: Applications and...

Save

Provides a comprehensive overview of network security concepts, protocols, and standards. It valuable reference for understanding the underlying principles of network security. It is particularly helpful for grasping the details of cryptographic algorithms and security protocols. This book can be used as a reference throughout the course.

Network Security Essentials: Applications and...

Paperback

$$$

Putting Knowledge to Work

Save

Provides a practical guide to network packet analysis using Wireshark. It is helpful for understanding network protocols and troubleshooting network issues. It is particularly useful for analyzing network traffic and identifying security threats. This book is more valuable as additional reading than it is as a current reference.

Putting Knowledge to Work

Paperback

Check price

Putting Knowledge to Work

Kindle Edition

Check price

Network and Communications Security

Two deals to help you save

What's inside

Syllabus

Traffic lights

Save this course

Reviews summary

Foundational network security concepts overview

Activities

Career center

Reading list

Share

Similar courses