Dr. Erdal Ozkaya

. Artificial Intelligence and the Fifth Industrial Revolution
2. Governance of Artificial Intelligence
3. Artificial Intelligence and Global Economic Challenges
4. Artificial Intelligence and Cybersecurity
5. Artificial Intelligence in the Face of Conflicts and Peacebuilding
6. Artificial Intelligence and Healthcare
7. Artificial Intelligence and Education

Gain useful insights into cybersecurity leadership in a modern-day organization with the help of use cases

Key Features
Discover tips and expert advice from the leading CISO and author of many cybersecurity books
Become well-versed with a CISO's day-to-day responsibilities and learn how to perform them with ease
Understand real-world challenges faced by a CISO and find out the best way to solve them

Cybercriminals are always in search of new methods and ways to infiltrate systems. Quickly responding to an incident should help an organization minimize its losses, decrease vulnerabilities, and rebuild services and processes. An organization without knowledge of how to effectively implement key Incident Response (IR) best practices is highly prone to cyber-attacks.

In the wake of the COVID-19 pandemic, with most organizations gravitating towards remote working and the cloud, this book… Show more

Cybercriminals are always in search of new methods and ways to infiltrate systems. Quickly responding to an incident should help an organization minimize its losses, decrease vulnerabilities, and rebuild services and processes. An organization without knowledge of how to effectively implement key Incident Response (IR) best practices is highly prone to cyber-attacks.

In the wake of the COVID-19 pandemic, with most organizations gravitating towards remote working and the cloud, this book provides updated IR processes to address the associated security risks.

The book begins by introducing you to the cybersecurity landscape and explaining why IR matters. You will understand the evolution of IR, current challenges, key metrics, and the composition of an IR team, along with an array of methods and tools used in an effective IR process. You will then learn how to apply this conceptual toolkit, with discussions on incident alerting, handling, investigation, recovery, and reporting.

As you progress through the book, you will cover governing IR on multiple platforms and sharing cyber threat intelligence. You will then thoroughly explore the entire spectrum of procedures involved in IR in the cloud – the challenges, opportunities, and how to handle a phishing incident.

Further, you’ll learn how to build a proactive incident readiness culture, learn and implement IR best practices, and explore practical case studies using tools from Keepnet Labs and Binalyze. Finally, the book concludes with an “Ask the Experts” section where industry experts have provided their perspective on diverse topics in the IR sphere.

By the end of this book, you should become proficient at building and applying IR strategies pre-emptively and confidently.

Publication date:
February 2021
Publisher
Packt
Pages
622
ISBN
9781800569218
Show less

Updated and revised edition of the bestselling guide to developing defense strategies against the latest threats to cybersecurity

My Book in Turkish

nside the Dark Web provides a broad overview of emerging digital threats and computer crimes, with an emphasis on cyberstalking, hacktivism, fraud and identity theft, and attacks on critical infrastructure. The book also analyzes the online underground economy and digital currencies and cybercrime on the dark web. The book further explores how dark web crimes are conducted on the surface web in new mediums, such as the Internet of Things (IoT) and peer-to-peer file sharing systems as well as… Show more

nside the Dark Web provides a broad overview of emerging digital threats and computer crimes, with an emphasis on cyberstalking, hacktivism, fraud and identity theft, and attacks on critical infrastructure. The book also analyzes the online underground economy and digital currencies and cybercrime on the dark web. The book further explores how dark web crimes are conducted on the surface web in new mediums, such as the Internet of Things (IoT) and peer-to-peer file sharing systems as well as dark web forensics and mitigating techniques.

This book starts with the fundamentals of the dark web along with explaining its threat landscape. The book then introduces the Tor browser, which is used to access the dark web ecosystem. The book continues to take a deep dive into cybersecurity criminal activities in the dark net and analyzes the malpractices used to secure your system. Furthermore, the book digs deeper into the forensics of dark web, web content analysis, threat intelligence, IoT, crypto market, and cryptocurrencies. This book is a comprehensive guide for those who want to understand the dark web quickly. Show less

It's not a secret that there is a huge talent gap in the cybersecurity industry. Everyone is talking about it including the prestigious Forbes Magazine, Tech Republic, CSO Online, DarkReading, and SC Magazine, among many others. Additionally, Fortune CEO's like Satya Nadella, McAfee's CEO Chris Young, Cisco's CIO Colin Seward along with organizations like ISSA, research firms like Gartner too shine light on it from time to time.

This book put together all the possible information with… Show more

It's not a secret that there is a huge talent gap in the cybersecurity industry. Everyone is talking about it including the prestigious Forbes Magazine, Tech Republic, CSO Online, DarkReading, and SC Magazine, among many others. Additionally, Fortune CEO's like Satya Nadella, McAfee's CEO Chris Young, Cisco's CIO Colin Seward along with organizations like ISSA, research firms like Gartner too shine light on it from time to time.

This book put together all the possible information with regards to cybersecurity, why you should choose it, the need for cyber security and how can you be part of it and fill the cybersecurity talent gap bit by bit. Starting with the essential understanding of security and its needs, we will move to security domain changes and how artificial intelligence and machine learning are helping to secure systems. Later, this book will walk you through all the skills and tools that everyone who wants to work as security personal need to be aware of. Then, this book will teach readers how to think like an attacker and explore some advanced security methodologies. Lastly, this book will deep dive into how to build practice labs, explore real-world use cases and get acquainted with various cybersecurity certifications.

By the end of this book, readers will be well-versed with the security domain and will be capable of making the right choices in the cybersecurity field. Show less

Our Award-winning - best seller book translated to Korean

Organizations have always been a target of cybercrime. Hands-On Cybersecurity for Finance teaches you how to successfully defend your system against common cyber threats, making sure your financial services are a step ahead in terms of security.

The book begins by providing an overall description of cybersecurity, guiding you through some of the most important services and technologies currently at risk from cyber threats. Once you have familiarized yourself with the topic, you will… Show more

Organizations have always been a target of cybercrime. Hands-On Cybersecurity for Finance teaches you how to successfully defend your system against common cyber threats, making sure your financial services are a step ahead in terms of security.

The book begins by providing an overall description of cybersecurity, guiding you through some of the most important services and technologies currently at risk from cyber threats. Once you have familiarized yourself with the topic, you will explore specific technologies and threats based on case studies and real-life scenarios. As you progress through the chapters, you will discover vulnerabilities and bugs (including the human risk factor), gaining an expert-level view of the most recent threats. You'll then explore information on how you can achieve data and infrastructure protection. In the concluding chapters, you will cover recent and significant updates to procedures and configurations, accompanied by important details related to cybersecurity research and development in IT-based financial services.

By the end of the book, you will have gained a basic understanding of the future of information security and will be able to protect financial services and their related infrastructures. Show less

The literature in the book can begin with understanding the concept and the whole idea behind “SOCIAL ENGINEERING” as to what it entirely compasses about and what the objective behind understanding the same is to ward off popular social engineering attacks such as Baiting, Phishing, Pretexting, Spear Phishing, Scareware and so on. Hence it becomes extremely important that we are vary of these attacks and know how to penetrate and test it.
This book will initially start with the concept of… Show more

The literature in the book can begin with understanding the concept and the whole idea behind “SOCIAL ENGINEERING” as to what it entirely compasses about and what the objective behind understanding the same is to ward off popular social engineering attacks such as Baiting, Phishing, Pretexting, Spear Phishing, Scareware and so on. Hence it becomes extremely important that we are vary of these attacks and know how to penetrate and test it.
This book will initially start with the concept of Social Engineering, different types of Social Engineering attacks, and the damages caused by Social Engineering attacks. Then we will set up the lab environment to use different toolkits and then perform social engineering steps such as information gathering, generating evil files and so on. We will also explore different tools used for doing social engineering such as Social Engineering toolkit. Towards the end of this book, we will learn how to design a threat model prominent in securing our information from Social Engineering threat attacks.
By the end of the book, you will be in a position to protect your system from social engineering threats and attacks. Show less

This article goes through the ways in which terrorists have been exploiting
social media. It explains how terrorist propaganda litters the internet and how terrorist
groups are recruiting new fighters on social media with special interest on Westerners.
The article also goes through how the increased encryption of social media platforms
has made them ideal for terrorists to use to communicate. Lastly, the article discusses
how terrorists have been capitalizing on social media to… Show more

This article goes through the ways in which terrorists have been exploiting
social media. It explains how terrorist propaganda litters the internet and how terrorist
groups are recruiting new fighters on social media with special interest on Westerners.
The article also goes through how the increased encryption of social media platforms
has made them ideal for terrorists to use to communicate. Lastly, the article discusses
how terrorists have been capitalizing on social media to fulfill their attention-seeking
goals. It also brings to light some complementary functions of the dark web to achieve
goals that are unattainable on social media. The article ends by suggesting aggressive
measures that can be taken by users, governments and social media platforms to bring
an end to terrorism on both social media and the dark web Show less

This paper goes through the increasingly controversial issue of the exploitation of social media to spread
fake news. It shows an elaborate method used by fake news peddlers to reach out to users. It discusses the eminent dangers of fake news and propaganda stories. Lastly, it highlights actions that governments, social media companies and users can take to curb the spread of fake news.
ISBN: 978-1-86-467304-3

Erdal Ozkaya and Rafiqul Islam (2017)Privacy in social media, 13th International Conference on Security and Privacy in Communication Networks, Niagara Falls, Canada.

This book constitutes the refereed proceedings of two workshops held at the 13th International Conference on Security and Privacy in Communications Networks, SecureComm 2017, held in Niagara Falls, ON, Canada, in October 2017: the 5th International Workshop on Applications and Techniques in Cyber Security, ATCS 2017, and the First Workshop on Security and Privacy in the Internet Of Thing

My Research: (my section of the book)
This paper researched two issues; targeted advertising and… Show more

This book constitutes the refereed proceedings of two workshops held at the 13th International Conference on Security and Privacy in Communications Networks, SecureComm 2017, held in Niagara Falls, ON, Canada, in October 2017: the 5th International Workshop on Applications and Techniques in Cyber Security, ATCS 2017, and the First Workshop on Security and Privacy in the Internet Of Thing

My Research: (my section of the book)
This paper researched two issues; targeted advertising and politics in social media. In its findings, it was apparent that many social media platforms actively collected user data and used big data to store and analyze it so as to profile the users. From these profiles, targeted adverts were served to the users on their social media feeds. The data collection process was however found to be unethical and full of privacy intrusions. Concerning politics, it was found out that social media had been used as a political tool. There were findings that most users were annoyed with political posts being shown on their feeds. The culprits were found to be the algorithms behind social media feeds and suggestions and the users themselves. The paper gave recommendations said to be temporary solutions for the issues surrounding target advertising and politics in social media. Show less

The book will start with the initial Incident Response process, moving to Red Team tactics, where you will learn the basic syntax for commonly used Windows and Linux tools to perform the necessary operations. You will also gain hands-on experience of using the new red team techniques with powerful tools like python and PowerShell which will enable you to find out vulnerabilities in your system and mediums to exploit them. Moving on, you will learn how to compromise a system, hack the user’s… Show more

The book will start with the initial Incident Response process, moving to Red Team tactics, where you will learn the basic syntax for commonly used Windows and Linux tools to perform the necessary operations. You will also gain hands-on experience of using the new red team techniques with powerful tools like python and PowerShell which will enable you to find out vulnerabilities in your system and mediums to exploit them. Moving on, you will learn how to compromise a system, hack the user’s identity, and the various tools used by the red team to find vulnerabilities in a system.
In the next section, you will learn about the defense strategies followed by the blue team to enhance the overall security of a system. You will also learn about an in depth strategy to ensure that there are security controls in each network layer and ways in which you can carry out the recovery process of a compromised system. Finally, you will learn how to create a vulnerability management strategy and the different techniques for manual log analysis.
By the end of this book, you will be well-versed with Red and Blue team techniques and will learn military grade security aspects of attacking and defending a system. Show less

Proceedings of 13th EAI International Conference on Security and Privacy in Communication Networks

Fight Against Cyber-Crime , experince from the filed

By taking an approach where an understanding of the anatomy of an attack is developed, the CyberSec First Responder (CFR) cyber security certification validates individuals have the high-stakes skills needed to serve their organizations before, during, and after a breach.
A CyberSec First Responder is the first line of defense against cyber attacks that can cost an organization valuable time and money. The CyberSec First Responder cyber security training and certification program will… Show more

By taking an approach where an understanding of the anatomy of an attack is developed, the CyberSec First Responder (CFR) cyber security certification validates individuals have the high-stakes skills needed to serve their organizations before, during, and after a breach.
A CyberSec First Responder is the first line of defense against cyber attacks that can cost an organization valuable time and money. The CyberSec First Responder cyber security training and certification program will prepare security professionals to become the first responders who defend against cyber attacks by teaching students to analyze threats, design secure computing and network environments, proactively defend networks, and respond/investigate cyber security incidents Show less

This book is a guide for you on everything you should know about cybersecurity. The book helps you understand what cyber security is, and the various ways organizations and governments can stay safe from cyber-attacks. Implementing application security is a major approach to countering cyber-attacks. This is the security organizations’ and governments’ implement on the hardware and software components they are using.

The various ways to implement this kind of security are discussed in… Show more

This book is a guide for you on everything you should know about cybersecurity. The book helps you understand what cyber security is, and the various ways organizations and governments can stay safe from cyber-attacks. Implementing application security is a major approach to countering cyber-attacks. This is the security organizations’ and governments’ implement on the hardware and software components they are using.

The various ways to implement this kind of security are discussed in this book. Information should also be protected against cyber-attacks. The protection of information should be geared towards achieving confidentiality, integrity, and availability. The various ways to achieve these are explored. Computer networks should also be secured so that attacks from network intruders can be thwarted. This requires the use of multiple approaches.

These approaches have been explored in this book. Organizations and governments may be attacked by cybercriminals. Such attacks can cripple the operations of the organization or the government.

There is a way for these parties to ensure that they have implemented recovery mechanisms, or ensure that their operations will keep on running despite such attacks. This book explores this in details and how to achieve it. States should also stay protected against cyberwar.

You will learn how to defining cybersecurity
Familiar your self with available tools and how you can use them
Improving your cyber defense skills
Protecting your personal stuff
Learn the current cybersecurity landscape
Learn how  to handle a breach for beginners
Tips for planning ahead of your cyber career 
Careers in cybersecurity

“Learn the Basics of Cybersecurity" Show less

EC-Council’s Center for Advanced Security Training (CAST) was created to address the need for highly technical and Advanced Security Training for information security professionals. CAST programs stand out from others thorough their extreme hands-on approach. These highly technical, lab intensive Advanced Security Training courses will allow a participant to combat real life scenarios

Get hands-on instruction and practice installing and configuring Windows Server 2012, including Windows Server 2012 R2, in this 5-day Microsoft Official Course. This course is part one in a series of three courses that provides the skills and knowledge necessary to implement a core Windows Server 2012 infrastructure in an existing enterprise environment.


The three courses collectively cover implementing, managing, maintaining and provisioning services and infrastructure in a Windows… Show more

Get hands-on instruction and practice installing and configuring Windows Server 2012, including Windows Server 2012 R2, in this 5-day Microsoft Official Course. This course is part one in a series of three courses that provides the skills and knowledge necessary to implement a core Windows Server 2012 infrastructure in an existing enterprise environment.


The three courses collectively cover implementing, managing, maintaining and provisioning services and infrastructure in a Windows Server 2012 environment. Although there is some cross-over of skills and tasks across these courses, this course primarily covers the initial implementation and configuration of core services, such as Networking, Storage, Active Directory Domain Services (ADDS), Group Policy, File and Print services, and Hyper-V.


This course maps directly to and is the preferred choice for hands-on preparation for Microsoft Certified Solutions Associate (MCSA) Exam 410:Installing and Configuring Windows Server 2012, which is the first of three exams required for MCSA: Windows Server 2012 certification.


NOTE: Labs in this course are based on the General Availability release of Windows Server 2012 R2 and Windows 8.1. Show less

This course is intended for Information Technology (IT) Professionals with hands on experience working in a Windows server 2008 or Windows Server 2012 environment who wish to acquire the skills and knowledge necessary to be able to manage and maintain the core infrastructure required for a Windows Server 2012 and Windows Server 2012 R2 environment. The key focus for students is to broaden the initial deployment of Windows Server 2012 services and infrastructure and provide the skills necessary… Show more

This course is intended for Information Technology (IT) Professionals with hands on experience working in a Windows server 2008 or Windows Server 2012 environment who wish to acquire the skills and knowledge necessary to be able to manage and maintain the core infrastructure required for a Windows Server 2012 and Windows Server 2012 R2 environment. The key focus for students is to broaden the initial deployment of Windows Server 2012 services and infrastructure and provide the skills necessary to Manage and Maintain a domain based Windows Server 2012 environment, providing skills in areas such as User and Group management, Network Access and Data Security. Candidates typically interested in attending this course would be

•Windows Server Administrators experienced in working with Windows Server 2008 or Windows Server 2012 who wish to gain skills necessary to perform daily management and maintenance tasks in a Windows Server 2012 or Windows Server 2012 R2 environment.
•IT Professionals who are looking to take the 411, Administering Windows Server 2012 exam
•IT professional wishing to take the Microsoft Certified Solutions Expert (MCSE) exams in DataCenter, Desktop Infrastructure, Messaging, Collaboration and Communications will also be interested in taking this course as they prepare for the Microsoft Certified Solutions Associate (MCSA) exams, which are a pre-requisite for their individual specialties.
Show less

This course is intended for Information Technology (IT) Professionals who are experienced Windows Server 2008 or Windows Server 2008 R2 system administrators who are familiar with carrying out day to day Windows Server management and maintenance tasks. The course will update their skills to Windows Server 2012 and Windows Server 2012 R2. Candidates suitable for this course would be:
•Experienced Windows Server Administrators who have real world experience working in a Windows Server… Show more

This course is intended for Information Technology (IT) Professionals who are experienced Windows Server 2008 or Windows Server 2008 R2 system administrators who are familiar with carrying out day to day Windows Server management and maintenance tasks. The course will update their skills to Windows Server 2012 and Windows Server 2012 R2. Candidates suitable for this course would be:
•Experienced Windows Server Administrators who have real world experience working in a Windows Server 2008 or Windows Server 2008 R2 enterprise environment
•IT professionals who have obtained the credential Microsoft Certified Solutions Associate (MCSA) Windows Server 2008 or have equivalent knowledge
•IT professional wanting to take the Microsoft Certified Solutions Expert (MCSE) exams in Data Center, Desktop Infrastructure, Messaging, Collaboration, and Communications will also be interested in taking this course as they prepare for the Microsoft Certified Solutions Associate (MCSA) exams, which are a pre-requisite for their individual specialties



At Course Completion


After completing this course, students will be able to:
•Install and configure Windows Server 2012.
•Manage Windows Server 2012 by using Windows PowerShell.
•Manage storage in Windows Server 2012.
•Implement network services.
•Implement remote access.
•Implement Failover Clustering.
•Implement Hyper-V.
•Implement Failover Clustering with Hyper-V.
•Implementing secure data access for users and devices.
•Implement Active Directory Domain Services (AD DS).
•Implement Active Directory Federation Services (AD FS).
•Monitor and maintain Windows Server 2012.

Show less

An advanced Windows Defence / Security courseware. First presented in the Australian Computer Emergency Response Team (AusCERT) conference .
http://conference.auscert.org.au/conf2012/tutorial_Erdal_Ozkaya.html

www.microsoft.com/intune

My Technical Articles which will be about Microsoft technologies specially Windows . Security, will be also covered in depth, from Ethical Hacking to Penetration Testing and reviews...

A comprehensive guide to overcoming financial cyber threats
Book Description
Financial organizations has always been on top of the list of most frequent cybercrime.This book's main goal is to teach you to increase the level of scrutiny, making sure your financial services are a step ahead in terms of security.
What You Will Learn
Understand the threats to a financial organization.
Learn to identify the attackers.
Learn to do Vulnerability Assessment, software testing… Show more

A comprehensive guide to overcoming financial cyber threats
Book Description
Financial organizations has always been on top of the list of most frequent cybercrime.This book's main goal is to teach you to increase the level of scrutiny, making sure your financial services are a step ahead in terms of security.
What You Will Learn
Understand the threats to a financial organization.
Learn to identify the attackers.
Learn to do Vulnerability Assessment, software testing, Penetration Test, Code Analysis.
Explore the different ways that you will use to defend your financial cyberspace using different Mitigation techniques, remediation plans etc.
Perform actions like encryption and decryption.
Understand how AI will affect cybersecurity.

The book begins by providing an overall description of Cyber-security. Later, the book will guide you through some of the most important services and technologies currently under the fire of cyber threats. There will be a deep and detailed analysis of specific technologies and threats which will be based on study cases and real-life scenarios. Vulnerabilities, bugs, including the human risk factor will be dissected to provide you with an expert level view of the most recent threats.

The book then deep dives into providing information on how to achieve data and infrastructure protection. A significant update on procedures and configuration, accompanied by important details related to research and development of cyber-security on IT infrastructure working on financial services. The book will end by providing an outlook on the future, an attempted forecast regarding the future of information security, to protect financial services and related infrastructures. Show less

Your one stop guide to intrude the Dark web and build a cybersecurity plan

Key Features
Get up and running with the core concept of Dark Web
Learn how to mitigate cyberattacks happening through Dark Web
Integrate the Dark web ecosystem with cutting edge areas like IoT, Forensics, and threat intelligence and so on.
Book Description
Dark web is an internet content that exist in the World Wide Web ecosystem but is only accessible through specific software/browser. The… Show more

Your one stop guide to intrude the Dark web and build a cybersecurity plan

Key Features
Get up and running with the core concept of Dark Web
Learn how to mitigate cyberattacks happening through Dark Web
Integrate the Dark web ecosystem with cutting edge areas like IoT, Forensics, and threat intelligence and so on.
Book Description
Dark web is an internet content that exist in the World Wide Web ecosystem but is only accessible through specific software/browser. The anonymity around Dark web paves way to plenty of illegal activities leading to cyber-attacks. Having a sound knowledge around Dark web will act as a important skill for cybersecurity professionals.

This book will start with the fundamentals of Dark Web along with explaining the threat landscape of Dark Net. Then we will introduce the Tor browser, which is used to access the Dark web ecosystem. Then we will deep dive into cybersecurity criminal activities in the dark net and we will deep dive into analyzing the malpractices used to secure your system. We will also dig deeper into forensics of dark web, web content analysis, threat intelligence, internet of things, crypto market and cryptocurrencies.

This book will act as a comprehensive guide for those who wants to understand Dark right from the scratch.

What you will learn
Learn theoretical and cross-disciplinary approaches to the dark web
Analyze the growth of the dark web in the context of emerging crime threats;
Handle the cybercriminal activity through technological and social engineering methods;
Understand the impact of cybercrime and defensive techniques against cybercrime.
Work with ToR browser
Get acquainted with most recent case studies on Dark Net
Who This Book Is For
This book is targeted towards cybersecurity professionals or aspiring cybersecurity enthusiast who wants to upgrade their skills by understanding the concept of Dark Web. Show less

Turkish Book co authored with very well known experts from Turkey, details will be added soon , expected to be published October 2018