Contact
  • Home
  • Get started with cybersecurity - ANSSI MOOC
Back

Get started with cybersecurity - ANSSI MOOC

Image Slider

October 30, 2019

By Alban D. - Cybersecurity Consultant, SQUAD

Perhaps you have heard about the MOOC offered by ANSSI (Agence Nationale de la Sécurité des Systèmes d'Information, France's national cybersecurity agency). Some companies require you to take this course when you join their organization. Initially free until April 2019, its "lifespan" has been extended until April 2021. This comprehensive MOOC is essentially a
freeawareness course that is useful for learning the fundamental concepts of cybersecurity.

Here is a summary of what to expect.

Presentation

What are we talking about?

The ANSSI MOOC is a course on information system security, providing certification of awareness of information system security issues and the people involved in them. The courses are available free of charge and accessible to all. It is a non-certification training program.

https://secnumacademie.gouv.fr/

The interface

Once your account has been created and you have logged in, the interface looks like this:

The MOOC consists of four modules. Each module is accessible without restriction for three years, after which the modules will be updated in line with changes in practices and risks.

Each module consists of 5 units, each comprising:

  • An introduction to the unit content
  • An interactive course
  • An assessment (about ten questions)
  • Links "for more information"
  • If this is the last unit of the module: a satisfaction survey about the module

Example screen for a unit:

The certificate of attendance:

Once you have viewed all the lessons and answered at least 80% of the questions correctly for each unit, you will have validated the unit and will receive a "badge."
To validate a module, you must have completed the lessons for all units and obtained an average of 80% on the assessments for the units that make up that module.
Once you have validated all the modules, you can download a certificate of completion in PDF format that looks like this:

Audience

This MOOC is intended for:

  • Any beginner or experienced developer who does not have specific security skills,
  • Anyone who uses a computer at work,
  • IT student,
  • Anyone who uses a personal computer and is looking for advice on how to secure it,
  • Curious about who was asked to give their opinion on this MOOC 😉.

In particular:

  • Some IT employers require that you have completed this MOOC.
  • The FAQ states that although the content was created for people working in companies, it is accessible to anyone aged 15 and over.

Module content

Here is an overview of the modules, their approximate duration, and a brief description of their content. The titles are fairly self-explanatory in terms of content, but I have written a summary for each module.

According to the FAQ, each module takes about 6 hours and 40 minutes. In parentheses, I've indicated the time I spent, knowing that I went through the lessons and questions relatively quickly but read some of the links provided in the "learn more" sections.

SSI Overview

This module (approximately 6.5 hours) presents the basics, who the players are in cybersecurity, the types of attacks, and the laws that already apply in cyberspace.

  • A hyper-connected digital world
  • A high-risk world
  • A player in cybersecurity
  • Protecting cyberspace
  • The golden rules of safety

Authentication security

This module (approximately 5 hours) explains how to choose a good password and keep it secure.

  • Principles of authentication
  • Password attacks
  • Securing your passwords
  • Managing your passwords
  • Cryptography concepts

Internet security

This module (approximately 6.5 hours) presents the risks on the Internet and the rules to follow to avoid them.

  • The Internet: what is it?
  • Files from the Internet
  • Web browsing
  • Email
  • Behind the scenes of a web connection

Workstation security and mobility

This module (approximately 3.5 hours) presents the risks associated with traveling in France and abroad, and best practices for protecting the data you carry with you.

  • Applications and updates
  • Basic configuration options
  • Additional configurations
  • Removable Device Security
  • Separation of uses

Impact and constraints, impressions

After completing the entire MOOC, here are my impressions:

  • This training course has the advantage of being suitable for all types of audience. Whether you are a novice or an expert, it will remind you of the basics of cybersecurity. For the more experienced, it is a good way to learn how to talk about security requirements and related professions.
  • Expect to spend 20 to 25 hours there.
  • Creating an account is essential (you will be asked for your real name once you have validated the modules).
  • To obtain the certificate, you must attend the classes even if you have passed the assessment.
  • (Minor) Some questions are poorly worded, and you may sometimes get the answer wrong because of the wording of the sentence.
  • You can restart the assessment once you have completed all the questions. The order and content of the questions will change slightly.