|
Introduction.
Enterprise Network Security Course (ENS) offers a
challenging curriculum, which intensively examines network security
issues. This 5-day course focuses on a multitude of problems and
situations that security professionals and managers are confronted with in
real-world situations. After successful completion of the ENS, you will
belong to the select group of security professionals who have the
knowledge to configure and control enterprise security.
[ TOP
]
Objectives.
The ENS course will provide you with the knowledge and skills necessary
to secure customer networks and systems in an enterprise environment using
the security products. Students also gain practical and technical
expertise to implement enterprise security by utilizing the Adaptive
Security Model, typical 'hacker' intrusion techniques, and the development
of a business case for enterprise security.
The course starts with the discussion of the complex social aspects of
good security practices. After the Adaptive Security Model is introduced,
the students' mission is to understand, implement and eventually refine
policies and progress through the development, implementation and
electronic enforcement of solid security procedures.
Students will learn how to establish a good baseline
security level within their organization or for their clients. You will be
taught how to develop cost effective monitoring of security events and
experience the difficulty of incident response. Example procedures for
incident management will be provided and explained to assist participants
in real-world security management. A course handbook and CD-ROM containing
tools and review materials used in the hands-on workshops will be
supplied. A written essay upon conclusion of the course will assess
participation and proficiency in this exciting and valuable sphere of
security.
[ TOP
]
Who Should Attend.
Network Security Professionals.
[ TOP
]
Prerequisites.
Students should have 6 months experience in vulnerability assessment
and intrusion detection. Students should also be familiar with security
products including:
§
Product basics
§
Running Product reports
§
Product installation
[ TOP
]
Course Outline.
The course will begin with a conceptual look at overall computer
security, then specifically cover Security Decision Support product
progressing through implementation.
The implementation sections will illustrate how the Security Decision
Support product can be used for different phases in enterprise security:
risk assessment, protection, intrusion detection, and reaction.
Next, it will discuss proactive and reactive methods of dealing with
attacks against typical LAN/WAN environments, including security provision
against attacks and how to evaluate and repair attack damage.
Course content will be then reinforced with a module on security
analysis and planning. Students will design a security needs analysis to
produce a security plan for a specific environment.
The training concludes with a module into which students are split into
teams and alternately "attack" and "defend" a
realistic enterprise environment network in the classroom.
[ TOP
]
§
Module 1: Social Aspects of Security
§
Module 2: ANS Security Overview
§
Module 3: What the Enemy knows
LAB: What the enemy knows
§
Module 4: What the Enemy wants
§
Module 5: Risk Assessment LAB: Finding the vulnerabilities before
the enemy does
§
Module 6: Asset Classification and Risk Management· LAB: Risk
Assessment and Cost
§
Module 7: Security Policy in the Enterprise
§
Module 8a: Legal Considerations of Policy
§
Module 8: Electronic Policy LAB : E-Policy translation and
development
§
Module 9: E-Policy Enforcement with Technology LAB: CERTor Xforce
alert and testing policy
[ TOP
]
§
Module 10: Management of E-Policies
-
Workshop discussion: Implement multiple policies
-
LAB: Policy: External, Internal, SA
-
LAB: operating system auditing product Policies
-
LAB: Analyzing NT security with SCM
§
Module 11: Integrating monitoring
§
Module 12: Centralized monitoring LAB: Setting up Centralized
monitoring
§
Module 13: Signatures Events and logs LAB: Knowing the signatures
§
Module 14: ROI Cost Benefit for Monitoring
§
Module 15: Incident Response
§
Module 16: Log Analysis LAB: IIS Event Log analysis
§
Module 17: Incident Handling Policy
§
Module 18: Structure of E-business LAB: Using MS Certificate Server
to secure an E-commerce site
§
Module 19: IIS 4.0 with Certificate Server LAB: Using IIS 4.0 with
Certificate Server
§
Module 20: Take-Home Certification Exam
[ TOP
]
What do others have to say about the ENS
Course?.
Feedback has been extremely positive on both course content and Phillip
Sparks' professionalism and expertise. Some comments from former
participants:
"A full, comprehensive course to provide security concerning all
business, technical and legal arenas"
"[it] broadened [my] mind for the things that really count in this
field"
"an excellent course presented by a highly informed team"
"great course, keep it going!"
© TechZone Consulting Services 2001
|
