CSP009_S_M: Maritime Software Security (v003)

CSP009_S_M: Maritime Software Security (v002)

Trainer

            Penelope Kyranoudi, Technical University of Crete

Session Details

  1. Session Title:
    Log Management and Threat Modelling
  2. Session Description:
    This session provides an introduction to Security Information and Event Management (SIEM) and its role in cybersecurity as well as to the threat modelling process and its use. Participants will explore log management principles, understand SIEM configurations, and learn how it can be connected with the threat modelling process.
  3. Key Learning Objectives:
    Understand the core functionalities of SIEM systems and their importance in cybersecurity.
    Learn the fundamentals of log management.
    Discover how to use threat modelling in connection with a SIEM.

Lab Details

  1. Lab Title:
    SIEM Platform and Threat Modelling Tool Setup
  2. Lab Description:
    This hands-on lab guides participants through the setup and configuration of a SIEM system as well as a Threat Modelling Tool. Participants will ingest and analyze logs and simulate threat detection scenarios to understand how SIEM systems work in practice. They will also understand in practice how these two processes can be useful to each other.
  3. Key Learning Objectives:
    Set up and configure a SIEM platform for log ingestion and monitoring.
    Log analysis
    Threat Modelling tool setup and use
  4. Tools/Software Required:
    SIEM platform
    Sample log datasets (to be provided)
    Threat Modelling tool

CSP009_S_M: Maritime Software Security (v001)