CertNexus Certified IoT Security Practitioner Cert Prep by InfoSec
7h 50mBeginner2025-07-24
Authors

Infosec Institute
Course details
Securing IoT systems can be a complicated process. Solutions may involve resource-constrained IoT devices and technologies from many different vendors. IoT devices may be installed in vulnerable locations, and new network devices and protocols add complexity to the overall network architecture. In this course, learn how to manage IoT risks, secure cloud and web interfaces, and secure data. Explore ways to control access to IoT resources and secure IoT networks. Plus, find out how to ensure privacy, manage software and firmware risks, and promote physical security. In addition to showing you how to handle the complexities of IoT systems, this course helps you prepare to take the CertNexus Certified IoT Security Practitioner (CIoTSP) exam.
Skills covered
Internet of ThingsHardwareNetwork SecurityCybersecurityCert PrepSoftware Development
Concepts
0. Introduction
- 01 - Certified IoT Security Practitioner overview
1. Managing Internet of Things (IoT) Risks
- 02 - Map the IoT attack surface
- 03 - Build in security by design
2. Securing Cloud and Web Interfaces
- 04 - Identify threats to IoT web and cloud interfaces
- 05 - Prevent injection flaws
- 06 - Prevent session management flaws
- 07 - Prevent cross-site scripting flaws
- 08 - Prevent cross-site request forgery flaws
- 09 - Prevent unvalidated redirects and forwards
3. Securing Data
- 10 - Use cryptography appropriately
- 11 - Protect data in motion
- 12 - Protect data at rest
- 13 - Protect data in use
4. Controlling Access to IoT Resources
- 14 - Identify the need to protect IoT resources
- 15 - Implement secure authentication
- 16 - Implement secure authorization
- 17 - Implement security monitoring on IoT systems
5. Securing IoT Networks
- 18 - Ensure the security of IP networks
- 19 - Ensure the security of wireless networks
- 20 - Ensure the security of mobile networks
- 21 - Ensure the security of IoT edge networks
6. Ensuring Privacy
- 22 - Improve data collection to reduce privacy concerns
- 23 - Protect sensitive data
- 24 - Dispose of sensitive data
7. Managing Software and Firmware Risks
- 25 - Manage general software risks
- 26 - Manage software installation and configuration risks
- 27 - Manage software patch and update risks
- 28 - Manage IoT device operating systems and firmware risks
8. Promoting Physical Security
- 29 - Protect local memory and storage
- 30 - Prevent physical port access
Conclusion
- 31 - Course summary