Resource List
Below is a short list of resources for information security, privacy, data governance, and analytics. This list includes:
- Security for start-ups
- Github curated lists
- Free training resources on many topics.
The data science content is listed since modern software development embeds data science and analytics automation into software design. If you are looking for additional resources, please feel free to contact me.
Startup Security
CISOHandbook.com
How to get security started in a high growth start-up
Security For Startups
Security for Startups: The Affordable Ten-Step Plan for Survival in Cyberspace
Security for the Lean Startup (data breach plan advice)
Why Startups Need A Security Plan From The Get-Go
UCSF: Great Example of Security Procedures (Incident Investigation)
GitHub Lists
meirwah/awesome-incident-response (incident response)
hslatman/awesome-threat-intelligence (threat intelligence)
enaqx/awesome-pentest (pen testing – for vulnerability assessment)
GitHub – Netflix/Fido (great example of incident response automation)
GitHub Showcase: Security
Computer Forensics
Browser History Viewer
Computer Forensics Training
Computer and Hacking Forensics
The Coroner’s Toolkit (TCT)
Forensic Control Free computer forensic tools
FTK Imager version 3.4.0.5
Forensics Wiki Tools
Magnet Forensics: Free Tools
Nirsoft
SANS SIFT Workstation
Sleuth Kit Autopsy
Cyber Threat
AlienVault Open Threat Exchange
Cyber Threat Management Framework (CTMF) Project
Collective Intelligence Framework
Open Source Threat Intelligence Tools & Techniques
Maltego
Microsoft Security Intelligence Report
Open Source Threat Intelligence
Open Threat Intelligence
The OpenIOC Framework
RiskIQ Community Edition
Data Governance
Data Governance for Privacy, Confidentiality and Compliance: A Holistic Approach
Data Governance Checklist
The DGI Data Governance Framework
Designing a Data Governance Framework to Enable and Influence IQ Strategy
A Flash-light into the Dark: The Starters Guide to Data Governance
Getting Started With Data Governance
Data Science
Intro to Data Science
Free Data Science Courses
The Open Source Data Science Master
The Little List of Free Data Science Courses
Data Science | Security | Privacy
Big Data and Data Science for Security and Fraud Detection
Data Scientists Must Prioritize Client Confidentiality
Data Science Code of Conduct
The Definitive Security Data Science and Machine Learning Guide
MLSec
Security data analytics and visualization with R Data Analysis
Data Science Toolbox
Secure and Scalable Data Science Deployments with Anaconda
Security Data Science: The next evolution in Information Security & Fraud industry
What your security scientists can learn from your data scientists to improve cybersecurity
AdversariaLib
Networks
CISCO Design Guides
Palo Alto Networks | A Modern Framework for Network Security in Government
The top 20 free Network Monitoring and Analysis Tools for sysadmins
The Bro Network Security Monitor
The TCP/IP Guide
Network Security Baseline
Snort
Wireshark
Privacy
Data confidentiality and privacy in data science for official statistics
Data Science and EU Privacy Regulations: A Storm on the Horizon
A Guide to Data Governance for Privacy, Confidentiality, and Compliance
The Privacy, Confidentiality and Security Assessment Tool: Protecting personal health information
Privacy Shield Framework
APEC Privacy Framework
Privacy Tools
HIPAA Privacy Training
HIPAA Training Videos
Machine learning and privacy
HHS Privacy Awareness Training
Handbook for Safeguarding Sensitive Personally Identifiable Information
PII Certification SEC 0221 (Sensitive Data Review)
UNC HIPAA, Privacy & Security Training Module
Social Media Training
Security
Payment Industry Counsel (PCI) Documents (reference for PCI security standards and guidance)
NIST Cybersecurity Framework (resources)
ISO/IEC 27001:2013 (Information technology — Security techniques — Information security management systems — Requirements)
SANS Critical Security Controls V6.0 Map
SANS Implementing the Critical Security Controls
Incident Handler’s Handbook
SCORE: Checklists & Step-by-Step Guides
Lenny Zeltser IT and Information Security Cheat Sheets
NIST Computer Security Incident Handling Guide
Phishing Incident Response Playbook
Incident Management Frameworks
Mastering Python – Networking and Security
Introducing FIDO: Automated Security Incident Response
OWASP Python Security
Writing Basic Security Tools using Python
Volatility
Security Training
Free and Open Source Cyber Security Learning
Open Security Training (Free Training)
Offensive Security – Metaspolit Training
SANS Cyber Aces Online Courses
Privacy & Security Training Games
Mobile Device and Health Information Privacy and Security
SAFECode
OWASP Training
Best Practices for Implementing a Security Awareness Program
Free Security Awareness Resources
Vulnerability & Pen Testing Assessment
37 Powerful Penetration Testing Tools (resource listing)
OWASP: Penetration Testing Tools
OWASP Testing Guide
SANS Pen Testing
PentestBox – Opensource PreConfigured Portable Penetration Testing for Windows
Penetration Testing: Job Knowledge & Professional Development
PentestGeek
lanmaster53.com
Common Exploits
SecLists.Org Security Mailing List
Kali Linux
Technical Guide to Information Security Testing and Assessment
Guidelines on Securing Public Web Servers
Guideline on Network Security Testing
HHS Guidance on Risk Analysis
HIPAA Security Rule Toolkit
Security Risk Analysis Tip Sheet: Protect Patient Health Information
Top 10 vulnerability scanners for hackers to find flaws, holes and bugs
Open Source vulnerability scanner and manager
Kali Tools


