Basic Course on Cyber security

Loading Events

« All Events

  • This event has passed.

Basic Course on Cyber security

June 21

Basic Course on Cybersecurity
Information Security Research & Development Center
Department of Computer Science and Engineering
IIT Bombay

Time Topic   Details
09:00 – 09:30 Registration
09:30 – 10:30 Introduction
  • Information Systems
  • Security principles
  • Confidentiality vs Privacy
  • Access control – why do we need models/frameworks?
  • Management of Information Systems (MIS)
  • Compliance: assess – remediate – report
10:30 – 11:30 Security
  • Cloud computing, Fog computing, IoT
  • Cybersecurity, cyber physical security, WiFi security, IT infrastructure security
  • Identity theft, safe browsing, safe configurations
  • Malware, spyware, scripts, plugins, extensions, cookies
  • Antivirus, firewalls, penetration testing
  • Security baselines & compliance
  • Security standards: PCI CSS, HIPPA, GDPR, ISO 27001, IT Act 2000
11:30 – 12:30 Social Engineering Techniques
  • Phishing, pretexting, baiting, quid pro quo, tailgating
  • At reception, telephone, visitors/contractors
  • Eavesdropping, man-in-the-middle attack
12:30 – 13:30 Lunch break
13:30 – 15:20 Best Practices in Information Security
  • Disposal of old hardware, repair, backup practices, new devices’ certification
  • File sharing services, portable HDDs, Remote Access
  • Password management, 2FA, privileged accounts
  • Default screen lock, clean desk policy, physical security
  • Mobile, BYOD – security & privacy implications on corporate infrastructure
  • Social media, posts to mailing lists
  • Handling the personal data of customer/client
  • Incident response (following the process), mitigation, prevention
  • Regular monitoring of users, resources (log management)
  • Security of third party providers
  • Anonymous reporting – single point of contact
  • Posters, newsletters, local use cases, local quiz based periodic recertification
  • Thinking like an attacker
15:20 – 15:40 Tea break
15:40 – 17:30 Blockchain & Other trends in Security
  • Blockchain
  • Current Trends in Cybersecurity
  • Case Study: WannaCry, Petya (JNPT scenario)
  • Case Study: Stuxnet, Flame, Ukraine power grid scenario
17:30 – 18:00 Quiz, Q&A
  • Interactive session, summary of key takeaways

Course outline

Cybersecurity education plays an important role in IT security of any large organization as many of the security incidents happen due to the mistakes an organization’s employees make. Having knowledge about the security principles and methodologies to enforce those principles helps the employees of the organization to handle unforeseen scenarios of decision making. The course also covers existing best practices in maintaining IT security, privacy. The use cases presented at the end of the course will allow the participants to apply the knowledge they gathered through the course. Participants’ understanding will be enforced by making them go through an educative quiz on which they can initiate discussions to validate their thinking process while handling the scenarios presented.

A brief bio of the course instructors

Prof. RK Shyamasundar

Professor RK Shyamasundar is a JC Bose National Fellow and Distinguished Visiting Professor at the Department of Computer Science and Engineering, IIT Bombay. He was the Founding Dean of School of Technology and Computer Science at Tata Institute of Fundamental Research. He is the founding President of IARCS and also the Founding Chair of the well-known series of FSTTCS conferences. He is a Fellow IEEE, Fellow ACM and Fellow of all National Science and Engineering Academies and a Fellow of the World Academy of Sciences (TWAS), Trieste. He has authored over 300 peer-reviewed publications, 8 patents, and 8 books. More than 35 Ph.D. students have graduated under his guidance in India and USA. He has been a consultant to ESPRIT projects, Industries, Govt. of India etc. He is on the editorial board of Journal of parallel and distributed computing, Sadhana etc. He has served as Faculty/Visiting Scientist at various places like IBM TJ Watson Research Center, UCSD, UIUC, SUNY at Albany, INRIA, IRISA, University of Cambridge, JAIST at Japan, Max Planck Institute at Saarbrucken, Visiting Distinguished Fellow of Royal Academy of Engineering, UK twice etc. One of his principal areas of research has been cybersecurity and is leading the Information Security Research and Development Center (ISRDC) funded by MEITY at IIT Bombay. He has/had been on the boards of IIIT Allahabad, IIIT Jabalpur, IDRBT, Bombay Stock Exchange etc.


Dr. Vishwas Patil

Dr. Vishwas Patil is a Senior Research Scientist at the Department of Computer Science and Engineering, IIT Bombay. He is a Ph.D. from the University of Rome. His areas of interest cover all aspects of security, privacy, blockchain, micropayment. He has worked at TIFR Mumbai, A-STAR Singapore, BNP Paribas.


Radhika BS

Radhika is a Ph.D. student at the Department of Computer Science and Engineering, IIT Bombay. Her areas of research include access control models, cybersecurity.


Other faculty members, industry experts, policymakers may be invited to speak at the event.


June 21


RK Shyamasundar
Vishwas Patil


109, New CSE Building
IIT Bombay
Mumbai, Maharashtra 400076 India
+ Google Map