Just because… Security Awareness is for everyone! (Just be SAFE!)
Justin David Pineda
President & Principal Consultant
justinp@pinedacybersecurity.com
https://pinedacybersecurity.com/
Just be SAFE! | J. Pineda | May 2026
Welcome to the Workshop!
Just be SAFE! | J. Pineda | May 2026
3-day Workshop from 8am-5pm.
Course notes and materials provided.
Answers to exercises should be placed in the template provided.
Links for all related materials
Just be SAFE! | J. Pineda | May 2026
SLIDE DECK
EXERCISES
WORKSHEET
REFERENCES
Getting to Know
(Speed Introduction)
Just be SAFE! | J. Pineda | May 2026
About the Facilitator: Justin Pineda
Industry
Certs
Academe
Pineda Cybersecurity
Alorica
Ingram Micro
Bnext Inc.
JG Summit Holdings Inc.
The Coca-Cola Company
Silversky/Perimeter Security
DPO ACE, CISSP, ISO/IEC 27032, ISO/IEC 27035, ISO 27034, ISO 42001, ISO 27001, CISM, CEH, GWAPT, GMOB, CEH, Security+, CCNA, IBM DB2, ISO 27002, Cato SASE, Parallels RAS, ITILv3, APMG CISM, ISC2 Trainer
Asian Institute of Management (AIM)
DLS-CSB
Asia Pacific College
LPU
NU
San Beda
Mapua
TIP
Page 5
Learning Process
Just be SAFE! | J. Pineda | May 2026
Answer the Pre-Test
Participate in the Discussion
Share Insights & Answer Exercises
Answer the Post-Test
* A PDF Glossary of Cybersecurity terms is also uploaded for reference.
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Learning Outcomes
L1: Identify the threats, vulnerabilities, and risks in the organization.
L2: Learn common and contemporary security incidents in every � key department in the organization.
L3: Learn different ways of handling and mitigating security � incidents.
L4: Analyze and answer cybersecurity case scenarios.
Just be SAFE! | J. Pineda | May 2026
Common Security Misconception
That there are only 2 teams:
Attackers (Red) and Defenders (Blue)
Just be SAFE! | J. Pineda | May 2026
But in the actual practice…
There are seven (7) teams.
Just be SAFE! | J. Pineda | May 2026
Survey – Which cybersec color are you interested to explore?
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Confidentiality
Just be SAFE! | J. Pineda | May 2026
DFA probes data breach into PHL passport tracking system
Integrity
Just be SAFE! | J. Pineda | May 2026
Availability
Just be SAFE! | J. Pineda | May 2026
Defense in Depth (DiD)
Just be SAFE! | J. Pineda | May 2026
Security Service and Mechanisms
Just be SAFE! | J. Pineda | May 2026
Service & Mechanism Example
Just be SAFE! | J. Pineda | May 2026
Goal: I want to focus on physical security
Security Services: (1)Personnel security; (2) Access control
Security Mechanisms: (1) Security clearance, training, rules of behavior; (2) Biometrics, proximity card, mantraps;
Operational Model of Security
Just be SAFE! | J. Pineda | May 2026
For many years, the focus was on prevention.
Protection = Prevention
For example: Use of Firewall
(Conklin et al, 2011)
Operational Model (cont’d)
Just be SAFE! | J. Pineda | May 2026
Operational Model (cont’d)
Just be SAFE! | J. Pineda | May 2026
Security Principles (cont’d)
Least Privilege – an object should only have the rights and privileges necessary to perform its task with no additional permissions.
Case of User Privilege:
Linux – sudo su (super user)
Microsoft – default admin
Just be SAFE! | J. Pineda | May 2026
Types of Least Privilege
Just be SAFE! | J. Pineda | May 2026
Diversity of Defense
Just be SAFE! | J. Pineda | May 2026
Diversity of Defense
Just be SAFE! | J. Pineda | May 2026
Because if a VULNERABILITY is FOUND in a particular brand, NO MATTER how many devices you have, ALL OF THEM ARE VULNERABLE.
Diversity of Defense
Just be SAFE! | J. Pineda | May 2026
Because if a VULNERABILITY is FOUND in a particular brand, NO MATTER how many devices you have, ALL OF THEM ARE VULNERABLE.
Security through Obscurity
Just be SAFE! | J. Pineda | May 2026
Security through Obscurity (STO)
Just be SAFE! | J. Pineda | May 2026
Cost Benefit Analysis (CBA)�
Just be SAFE! | J. Pineda | May 2026
Cost Benefit Analysis (CBA)�
Just be SAFE! | J. Pineda | May 2026
Information Security Management System (ISMS)
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Role of Auditing in Information Security
Just be SAFE! | J. Pineda | May 2026
Role of Auditing in Information Security
Just be SAFE! | J. Pineda | May 2026
Security Relationships
Just be SAFE! | J. Pineda | May 2026
Threat Agent
Threat
Vulnerability
Risk
Asset
Exposure
Safeguard
Gives rise to
Exploits
Leads to
Can damage
And causes
Can be counter-measured by a
Directly affects
Security Relationship: �PhilHealth Data Breach
Just be SAFE! | J. Pineda | May 2026
Cybercriminal
Threat agent/actor
Medusa Ransomware
Threat
Expired Antivirus
Vulnerability
Personal Information
Asset
Activity: Which is which? �
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Activity: Which is which?
Just be SAFE! | J. Pineda | May 2026
Cyber Threat Environment
Cyber Threat
Cyber Threat Environment
Just be SAFE! | J. Pineda | May 2026
Cyber Threat Environment
Just be SAFE! | J. Pineda | May 2026
Namechk
Just be SAFE! | J. Pineda | May 2026
Namechk
Just be SAFE! | J. Pineda | May 2026
Namechk
Just be SAFE! | J. Pineda | May 2026
Cyber Threat Actor and Motivation
Just be SAFE! | J. Pineda | May 2026
Cyber Threat Actor | Motivation |
Nation-states | Geopolitical |
Cybercriminals | Profit |
Hacktivists | Ideological |
Terrorist Groups | Ideological Violence |
Thrill-Seekers | Satisfaction |
Insider Threats | Discontent |
Anonymous
Hacktivists
Employee Negligence
Insider Threats
Cyber Threat Surface
Just be SAFE! | J. Pineda | May 2026
Where to begin in the organization?
Just be SAFE! | J. Pineda | May 2026
Always participate in security awareness activities.
Report security incidents to the IT team.
Follow organization’s information security policies.
Be proactive in voicing out concerns to improve security.
Social Engineering
Just be SAFE! | J. Pineda | May 2026
Psychological attack where attackers trick or fool victims.
Key Points:
Train employees what social engineering is
How to spot most common indicators of social engineering
What to do when they spot one
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Just be SAFE! | J. Pineda | May 2026
Scenario 1: Instant Promotion
You receive a confidential email from your organization’s CEO informing you that you are being promoted, but you are instructed not to tell anyone yet. You verify that the email appears to have come from the CEO’s account. However, the CEO asks you to send copies of your last two months’ payslips to a different email address for “review.” The email also states that if you fail to send the documents within the day, the promotion opportunity will be given to someone else.
What would you do in this situation?
Just be SAFE! | J. Pineda | May 2026
Scenario 2: Surprise Penalty
Someone from the accounting department received an email claiming that the company would incur a penalty for failing to submit certain government documents on time. Concerned about the issue, she clicked the link in the email to view more information. She then downloaded and opened an attached PDF file. Upon opening the file, ransomware was executed, encrypting her computer and spreading to other machines across the network.
If you were in the office and discovered this incident, what actions would you take?
Just be SAFE! | J. Pineda | May 2026
Knowledge Check # 1
Just be SAFE! | J. Pineda | May 2026
Knowledge Check # 2
2. What does ISMS stand for?
Just be SAFE! | J. Pineda | May 2026
Knowledge Check # 3
3. Which of the following is an example of a security control?
Just be SAFE! | J. Pineda | May 2026
Knowledge Check # 4
4. What is the main purpose of information security auditing?
Just be SAFE! | J. Pineda | May 2026
Knowledge Check # 5
5. Which principle protects information from unauthorized modification?
Just be SAFE! | J. Pineda | May 2026
References and Further Reading
Just be SAFE! | J. Pineda | May 2026
Terminologies
Just be SAFE! | J. Pineda | May 2026
Just because… Security Awareness is for everyone! (Just be SAFE!)
Justin David Pineda
President & Principal Consultant
justinp@pinedacybersecurity.com
https://pinedacybersecurity.com/
Just be SAFE! | J. Pineda | May 2026