Master Cybersecurity with the

Stanford Advanced
Computer
Security Program

A Program by: Delivered and Supported by:

Securing
your digital
future
There has never been a better time to
build your cybersecurity skills. The
threat of cybercrime and the cost of
security lapses are getting ever higher.
At the same time, businesses big and
small are moving all their operations
online. All of this has resulted in a
massive increase in demand for
in-house and consulting cybersecurity
experts.
The need for a dedicated cybersecurity
team is so widespread that nearly 70%
of businesses feel the desperate need
for cybersecurity skills. This translates
to nearly 3.5 million jobs unfilled in this
area by 2021. For the skilled
cybersecurity professional, this is an
immense opportunity to make a really
big impact in an organization.
So what constitutes a skilled
cybersecurity professional? Each asset
of the company is not made the same.
Some are more important and critical
than others, and if disrupted, can bring
the entire system to a halt. This is
important to note because a company
cannot plough all their resources into
monitoring and fortifying every single
one of their assets. The cybersecurity
team’s responsibility is to identify these
critical components and devise a
strategy to secure them and thwart any
interruption to the services of the
company. A competent cybersecurity
expert is proactive, rather than being
just reactive to security attacks when
they happen. They set up detection
systems that alert them before an
attack is about to happen by constantly
monitoring for any suspicious traffic.
They are also able to advise the
engineering team to hard-wire security
features in their code to build a robust
system. In order to impart
industry-relevant cybersecurity
expertise to professionals facing such
challenges, the Stanford Center for
Professional Development is offering
the Advanced Computer Security
Program. It is taught by experts from
one of the world's best computer
science schools, and offers
comprehensive cybersecurity skills.
Program Benefits
Get the Stanford Center for Professional Development advantage
Build cutting-edge cybersecurity skills with a pioneering computer science school

Get a certificate from Stanford Center for Professional Development

Showcase your skills with a certificate from the Stanford Center for Professional Development

Internationally renowned faculty

Learn from pioneers in the field of cybersecurity, both in research and industry

Mentorship from industry experts

Learn the tricks of the trade from seasoned cybersecurity practitioners

Gain practical cybersecurity experience

Work on hands-on projects that develop your ability to solve real-world problems

Learn with minimal disruption to your job

Completely online learning experience that’s both convenient and immersive
Program
Structure
This 6-month structured
program will help you gain
advanced skills needed to
protect networks, secure
electronic assets, prevent
attacks, ensure the privacy of
your customers, and build
secure infrastructures.
World class learning material
Online content distilled from latest research and
best practices by leading cybersecurity
professionals and Stanford faculty.
Gain real-world insights
Get access to exclusive insights from senior
industry practitioners from leading organizations
such as Google, LinkedIn and Data Theorem.
Peer-to-Peer Learning
Learn from highly accomplished peers. Participate
in discussions, engage in community
problem-solving and build your network.
Hands-on projects
Gain industry-relevant skills through hands-on
projects. Apply what you’ve learnt to real-world
problems and build your professional portfolio.
 Curriculum
Mobile Security
• Mobile application security measures
• Models to develop and secure Android
applications
• Security detection and measures in iOS
• Trends in mobile device management (MDM)
EXCLUSIVE INTERVIEWS
• Himanshu Dwivedi, Chief Executive OfficeData
Theorem
• Mukul Khullar, Staff Information Security Engineer,
LinkedIn.
Exploiting and Protecting Web Applications
• Overview of Web Technologies (HTTP, cookies,
JavaScript, caching, session management)
• Browser Security Model (document object model,
same-origin-policy and violations of it), and SSL
• Coverage of HTML5 vulnerabilities due to frame
communication, localstorage, cross-origin resource
sharing, and other HTML5 features
• SQL Injection (and other forms of command injection
including LDAP and XPath Injection)
• Cross-Site Scripting (XSS), Cross-Site Request
Forgery (XSRF), and Cross-Site Script Inclusion
(XSSI), Clickjacking
• Prevention techniques including input validation,
output escaping, signatures, message authentication
codes, and frame busting
 Curriculum
Using Cryptography Correctly
• Introduction to Cryptography
• Using Cryptography Correctly
• Advanced Topics in Cryptography
• Symmetric Encryption
• Public-Key Cryptography
• User Authentication
Network Security
• Security Application measures
• How to idenitfy operating system holes
• The important interplay of privacy and
digital rights management
• Trends in malware, privacy and security for
mobile devices
• Ways to prevent network attacks and gaps in
security policy
Emerging Threats and Defences
• Advanced persistent threats and mobile threats
• Cloud trust assumptions and threat models
• Machine learning use for detection and defenses
• Network traffic analysis, web trafficking and defenses
• SSL/TLS protocol and authentication infrastructure
• Trusted cloud hardware and advanced cryptographic
solutions
Writing Secure Code
• Control Hijacking Attacks and Defenses
• Attacks Using Virtual Machines
• Tools for Writing Code Securely
• Static and Dynamic Analysis
• Language-based Security Models
• Isolation Techniques
 Projects
Exploit a Web Application Exploit a Vulnerable Linux virtual machine
Exploiting the web app using various injection Port scanning with Nmap, packet sniffing using
techniques and other vulnerabilities. Wireshark and exploiting the Linux machine
using Metasploit.
VULNERABILITIES COVERED
• SQL Injection
VULNERABILITIES COVERED
• Xpath
• Backdoor Code Execution
• LDAP
• Open Ports
• XSS
• Remote Downloader
• XSRF
• Dos
• MITM
• Session Management
TOOLS USED
TOOLS USED • Kali Linux
• Kali Linux • Metasploitable(vulnerable Linux machine)
• OWASP BWA(Contains Vulnerable • Nmap(port scanning tool)
Web application) • Wireshark(packet sniffing tool)
• Burp Suite(Intercepter) • Metasploit(a tool for developing and executing
exploit code against a remote target machine)
 Projects
Mechanics of various flaws that occur while writing code

VULNERABILITIES COVERED
• Stack Smashing
• Function Pointers
• Smashing Integers
• Format Strings
• Fuzzing With American Fuzzylop

TOOLS USED
• Vs code (an ide with an integrated terminal)

DAN BONEH
Dan Boneh is a Professor of Computer
Science and Electrical Engineering at
Stanford University. He obtained his PhD
in Computer Science from Princeton
University. In 2002, he co-founded a
company called Voltage Security which
was acquired by Hewlett Packard in
2015. In 2018, Boneh became
co-director of the Center for Blockchain
Research at Stanford.
Program Faculty
JOHN C. MITCHELL
John C. Mitchell is the co-director of the
Stanford Computer Security Lab and a
Professor of Computer Science and
Electrical Engineering at Stanford
University. He was the Vice Provost for
Teaching and Learning at Stanford
University, and is a member of the
steering committee for Stanford
University's Cyber Initiative.
NEIL DASWANI
Neil Daswani is a co-director of the
Stanford Advanced Security
Certification Program and an expert in
web application security. He is the lead
author of the book "Foundations of
Security: What Every Programmer
Needs To Know." In 2008, he
co-founded Dasient, a web security
company. Daswani was previously the
Chief Information Security Officer at
Lifelock, which was later acquired by
Symantec.
 Industry Experts
SUBHAJIT DEB
Subhajit is an security leader with 16+ years of experience.
Apart from a Six Sigma Green Belt and various other
security certifications, he currently has 2 US Patent granted,
2 US Patents filed and 4 Bank of America Trade Secrets
submitted towards different areas of Information Security and
Risk Management. Subhajit has won several awards in the
information and cyber security domain including the Top 100
CISOs.
NIRMALLYA MUKHERJEE
With over two and half decades of cross domain experience
in IT and ITES across both services and products, Nirmallya
Mukherjee has served as Chief Architect at Dell, Principal
Architect at Infosys and Technical Architect at Ciber Inc, an
HTC Global Services company. He lends his expertise to
various multinationals like Cisco, Walmart Labs, Amadeus,
Mercedes Benz, ANZ, Societe Generale etc. through his
consulting, development and training engagements.
Admission Details
WHO IS THIS PROGRAM FOR? SELECTION PROCESS
This program is suited for professionals working in roles
that include:
• Information Technology Professionals STEP 01
Apply
• Software Developers Fill an online application form.
• Network Security Engineers
• Software Engineers
• App Developers Evaluation
• System Architects STEP 02 If applicable, get interviewed by the
• Systems Analysts Admissions Director’s office.

ELIGIBILITY
Join the Program
• Bachelor's degree in engineering STEP 03
• Atleast 3 years of professional experience in Upon approval from the Director’s office,
Computer Science or IT you will receive an offer to enrol.
 Admission Details
FEE DETAILS

Early Admission: USD 2495 Financial assistance

₹1,74,650 (approx.) Pay in 12 EMIs at 0% interest rate
Regular fee: USD 3045 with ZestMoney
(This fee will apply once early admission is completed)
Fee includes tuition fee + learning material +
mentorship

Payment options
• Candidates can pay the program fee
through netbanking, credit/debit cards,
cheque/DD.
• Pay the full fee upfront, and avail benefits, or pay
in two easy installments.
About Us

The Stanford Center for Professional Development, a part of The Office of the Vice Provost for Teaching and Learning (VPTL),
makes it possible for today's best and brightest professionals to enrol in Stanford University courses and programs while they
maintain their careers. Their portfolio reflects the exciting research and world-class teaching of Stanford faculty from all of Stan-
ford’s schools. Courses are delivered online and, in some cases, at Stanford, at your work site, or at international locations -
providing a global community of learners with flexibility and convenience and enabling them to apply their education to their
work.

Great Learning's mission is to enable career success in the Digital Economy. Its programs always focus on the next frontier of
growth in industry, and spans across Analytics, Data Science, Big Data, Machine Learning, Artificial Intelligence, Deep
Learning, Cloud Computing, Cybersecurity and more. Great Learning’s emphasis on mentored and peer learning provide a
robust support structure to help learners attain mastery of the areas they learn. By combining technology, high-quality content,
and industry collaboration, learners gain an immersive learning experience and the ability to apply and demonstrate their
competencies. All programs are offered in collaboration with leading global universities and are taken by thousands of
professionals every year to secure and grow their careers.
+91- 9606027054

cybersecurity@greatlearning.in

greatlearning.in

Ver. 4_12_2018