# From Problem to Plan - Part 3 ## Метаданные - **Канал:** Mossé Cyber Security Institute - **YouTube:** https://www.youtube.com/watch?v=14eytxm2ib4 - **Дата:** 10.04.2026 - **Длительность:** 9:56 - **Просмотры:** 15 - **Источник:** https://ekstraktznaniy.ru/video/50098 ## Транскрипт ### Segment 1 (00:00 - 05:00) [] Welcome back. What we're going to do is I'm going to show you diagrams that I've created. And I've created these diagrams when I was thinking through different problems in the industry. But, I don't need you to look so much in trying to understand what these diagrams are about. What I want you to spot are the mental moves that I've made. So, even if you're looking at this slide and you can't quite read the content, it does not matter for the purpose of these little challenges we're going to do together. What I want you to do is I want you to look at the diagrams and based on the shapes that you're seeing in the diagram, I want you to guess, make an educated guess on the mental moves I've been making. So, you're going to pause the video and you're going to go through the numbers 1 2 3 and 4 and you're going to have to try and guess what are the mental moves I'm making. Let's pause and I'll see you in a second. Okay. With number one, you see a box in red, I've written web of causes and then that box expands and you see many different boxes like insufficient MFA, insufficient monitoring. This move is called zooming in. I have this concept called web of causes and in my mind, I can't even remember what I was working on, but when I zoomed in, I was able to break this down into parts. That's zooming in. On the right-hand side here, we've got vulnerabilities. And again, there's a quadrant with different parts that I've listed. I'm doing zooming in one more time. I'm zooming in to the word vulnerabilities. Can't remember what the context was, but I was interested in something to do with lost credentials, weak credentials, and other things. On the left, this is interesting, we've got account and again, I'm zooming in and there are three parts. To the right of accounts, we've got credentials. These two here, account and credentials, are connected and in the middle, I've got a green box where I've written one-to-many relationship. This is actually RDS barbell. I've got two parts. I have zoomed into both parts and I've also zoomed into the relationship to explain that it's a one-to-many relationship. So, everything here in this diagram has to do with the zooming in, but there's also an RDS barbell that you're seeing here in the bottom left corner. Now, let's do the same thing, but this time for challenge number two. So, pause for a second and then I'll give you the answers. Okay. So, number one is pretty simple. I have a term called people. I'm zooming in and I've got three parts, critical thinking, problem solving, creativity. At the bottom, I have two other parts, process and technology. And here, what I'm really doing is I'm actually doing some sort of part party. At the top, you've got people. I see people is connected to process. Process is connected to technology. People is also connected to technology. And I also have problems on the left and I'm connecting people to problems. This is part party. And then for three out of the four parts that are connected with an arrow, I'm zooming in and I'm explaining what the relationship is about. So, I'm saying that people solve problems, people create processes that work, and people create innovative tools. And all of these taken together makes up the system. Let's look at the next one. Again, pause for a second and try to pick up the moves. All right. ### Segment 2 (05:00 - 09:00) [5:00] Number one, we have something called object. Then we zoom in. We have three parts, accounts, keys, and secrets and I'm zooming into those parts one more time. So, here the parts are grouped into holes and there are three levels of parts. And then on the right-hand side, I do the same thing for permissions. And in the middle, I zoom into the relationship and I again do an RDS barbell and I explain what the relationship is about by zooming in and saying that there's something to do with stealing, guessing, escalating, and abusing, typical keywords in cybersecurity. And all of this is part of a bigger concept called restrict administrative privileges. If you're interested in what all of this was about, chances are it is on the MCSI breakpoint blog. Uh you just look for this diagram and there'll be an explanation of what it is. But what I'm showing you with these diagrams is literally the mental map that I have in my mind when somebody talks to me about a concept like restricting administrative privileges. Challenge number four. Okay. Spot the moves. Well, at the top, we've got something called business interruption. And then what I do is I zoom in. If you look, the zooming in this time is not just parts, it's a whole system. Okay. On the left, we've got something called business revenue model. Again, you can zoom in and the parts are grouped into whole logical holes. Same thing on the right-hand side, business interruption methods and then the two parts are connected and I can zoom into the relationship to explain those. Challenge number five. What does that look like? Well, in the middle, we have a point or thing called TeamViewer. And around TeamViewer, we've got different perspectives. We've got the perspective of IT professionals that use TeamViewer as a remote access and support tools. In the bottom left corner, we've got end users whose perspective is that TeamViewer is a tool that IT uses to help them when their computer doesn't work. On the bottom right, we've got security products that say that, "Hey, customers use TeamViewer legitimately, so we have to whitelist it. " But, in the top right corner, we see that the threat actors, they have a completely different view and their perspective is that TeamViewer can be turned into a backdoor because it's whitelisted by the security products and it's used by the IT teams and it's accepted by the end users. So, every time you see this pattern of a point and then different perspectives, we're talking about the perspective circle. So, you can practice doing this anywhere on anything. I have showed you diagrams where you can recover my moves because I took the time to write the diagrams, but you could pick up a social media post. You could grab a news article. You could take a chapter from a book. And you should ask yourself, "Okay, well, what are the key terms that are being used? How are they being defined? How should they be defined? What are the parts that the author is trying to describe? What are the relationships that are being drawn between those parts? Which perspectives are being represented? Which ones might have been missed? And which parts of the wider context are being explained? Which parts have been missed? " And then you can go and you can create your own diagrams using the six moves. And what you're going to find, chances are, is that most of what people write is incomplete. There's always more to discover and you're going to discover things that even the author hasn't thought about. And that is how you will become, over the long term, a much better thinker. So, we'll pause here and in the next video, we're going to practice these mental moves on MCSI exercises.