Difference between revisions of "GainCloud Advanced Security Training"
| Line 3: | Line 3: | ||
<div style="width: 160px; padding-left: 20px; text-align: center;"><a style="text-decoration: none;" href="https://www.gaincloud.com/share/viewshare.do?mainsharecode=MS6021021"> <img src="https://www.gaincloud.com/my/htdocs/images/folder_blue_stuffed.png" alt="Cloud based Secure Online Private Share Folder For Software" /> <br /><strong>Training Material eShare</strong></a></div> | <div style="width: 160px; padding-left: 20px; text-align: center;"><a style="text-decoration: none;" href="https://www.gaincloud.com/share/viewshare.do?mainsharecode=MS6021021"> <img src="https://www.gaincloud.com/my/htdocs/images/folder_blue_stuffed.png" alt="Cloud based Secure Online Private Share Folder For Software" /> <br /><strong>Training Material eShare</strong></a></div> | ||
<!--End Of Button Code--> | <!--End Of Button Code--> | ||
| + | <p><span style="font-size: small;"><br /><span style="text-decoration: underline;"><strong>Total Instruction Hours:</strong></span><br />21 hours of Classroom Instructions<br />30 hours of Hands-on Lab<br />9 hours of Testing (in 9 separate Tests)<br />===============================================<br />Net total is 60 hours of curriculum<br />===============================================</span></p> | ||
| + | <p> </p> | ||
<p><span style="text-decoration: underline;"><strong><span style="font-size: small;">The Course Curriculum for this Advanced Security Training:</span></strong></span></p> | <p><span style="text-decoration: underline;"><strong><span style="font-size: small;">The Course Curriculum for this Advanced Security Training:</span></strong></span></p> | ||
<p> </p> | <p> </p> | ||
| − | <p><span style="font-size: small;"><br /></span></p> | + | <p><span style="font-size: small;">(3 Hour) [CLASS] Introduction to networks security<br /> - Network Concepts <br /> >> IPV4, Device ID, Network cards - hard/soft<br /> >> Authentication Factors <br /> >> Authentication & Authorization<br /> >> New Authentication Systems <br /><br />(3 Hour) [CLASS] Infrastructure Security<br /> >> Context Aware Firewalls (ASA)<br /> >> Policy Management <br /> >> Object Definition and ACL Management (ASA)<br /> >> Infrastructure & Security Protocols<br /> >> Enterprise Security Products (PDF and Notes)<br /> >> Perimeter Security<br /> >> In-Network Security<br /> >> DNS Security is Corporate #1 Priority<br /> >> Identity Management <br /></span></p> |
| + | <blockquote> | ||
| + | <ul> | ||
| + | <li><span style="font-size: small;">IAM - Unified identity management - self reg, identity lifecycle, provisioning, sync</span></li> | ||
| + | <li><span style="font-size: small;">OAM - centralized access management - Authn and Authz - for Web, service-based, mobile,..</span></li> | ||
| + | <li><span style="font-size: small;">OID - Centralized data storage & encryption - encrypt data-in-storage & data-in-transit - DLP</span></li> | ||
| + | <li><span style="font-size: small;">Admin - Delegated admin, admin-overview, Rule based admin oversight, Re-Certification</span></li> | ||
| + | <li><span style="font-size: small;">Audit - Yearly, Quaterly and monthly compliance checks, internal audit and external audits</span></li> | ||
| + | <li><span style="font-size: small;">Compliance - Support for SSAE16, SOC1, SOC2, PCI and SOX </span></li> | ||
| + | </ul> | ||
| + | </blockquote> | ||
| + | <p><span style="font-size: small;"><br /> <br /> - LDAP and Directory Management<br /> >> Traditional data storage Vs. Tree structure<br /> >> Caching Vs Searching<br /> >> Profiling Vs Tabulation<br /> >> Active Directory and other common LDAP vendors<br /> >> Virtual and Meta<br /> <br /> <br /> <br /> <br /> <br />===================================================================================================================================<br /> <br /><span style="font-size: small;">(3 Hour) </span>[CLASS] Security Management<br /></span></p> | ||
| + | <p><span style="font-size: small;"><span style="font-size: small;"> - Intrusion Prevention<br /> - All are based on behaviour analysis<br /> - Detection<br /> <br /> - VPN - <br /> >> IPSec Vs SSL<br /> >> RADIUS<br /> >> Site-to-Site VPNs<br /> <br /> - Wireless Security <br /> >> WEP Vs WPA Vs WPA2<br /></span> <span style="font-size: small;"> <br /> - Vulnerability Analysis<br /> >> Using existing tools<br /> >> Without using any software tools</span></span></p> | ||
| + | <p><span style="font-size: small;"><span style="font-size: small;"> </span><br /> - Security Policies<br /> >> Corporate Security Policies<br /> >> Hackers Hat - breaking corporate security code<br /> >> Endpoint Assessments<br /> >> Enabling Intrusion Prevention System (IPS)<br /> <br /> - Best Practices - Cyber-Security<br /> >> Traditional Hacking Techniques<br /> >> Monitor telemetry data<br /> >> Event Coorelation for alarms<br /> >> Risk Analysis and Mitigation<br /> <br /> - Review malware signatures<br /> >> Viruses & Worms<br /> >> Network Trace gathering and analysis<br /> <br /> - Review common hacking techniques and kits<br /> >> Backdoor<br /> >> Botnets<br /> >> DoS and DDoS<br /> >> Tunnel Attacks<br /> <br /><span style="font-size: small;">(3 Hour) </span>[CLASS] Leading Companies and Leading Products - how-to-use, why-to-use, where-to-apply<br /> - Top 3 Products - in-depth<br /> <br /> 1: - QQ<br /><br /><span style="font-size: small;">(3 Hour) </span>Identification:<br /> > 3-[CLASS] Network analysis and deep-dives<br /> - Identify Compromised System<br /> - Isolate Zombie<br /> - Stopping malware<br /> <br /><span style="font-size: small;">(3 Hour) </span>-[CLASS] Intrusion signatures & footprints<br /> - Signature Analysis<br /> - P32/PDOM screenshots<br /> - RootKits<br /> <br /> 1: - QQ<br /><br /><span style="font-size: small;">(3 Hour) </span>[LAB] Prevention - Perimeter Security<br /> - Introduction<br /> - PKI - Create cert, sign them, install them, trust them and external providers<br /> <br /> <br /><span style="font-size: small;">(3 Hour) </span>[CLASS] Firewalls & Rulesets<br /> - ACE, ACL, ACI<br /> - LDAP and Directory Infrastructure<br /> <br /> 1: - QQ<br /> <br /><span style="font-size: small;">(3 Hour) </span>[LAB] Adaptive Security<br /> >> Introduction to Software based security:<br /> > Clamscan, Bayes Algo, Other softwares<br /> > IPtables<br /> > Software firewal of Linux<br /> > Hardening Kernel and Linux services<br /> 1: - QQ<br /> <br /><span style="font-size: small;">(3 Hour) </span>Hardware based security<br /> > IPS<br /> > Firewall<br /> > Shun Hosts<br /> 1: - QQ<br /> <br /><br /><span style="font-size: small;">(3 Hour) </span>[CLASS] <span style="font-size: small;">Offensive Network Design: </span>Network<br /> - Review existing network<br /> >> Interview Customer - questions to ask - checklist<br /> >> Checklist for Table Of Obervation - recording<br /> >> Security checklist for implementation<br /> >> Master Checklist for design analysis<br /> - Review current architecture<br /> >> First create your proposed topology and artifacts<br /> >> Peer review of topo<br /> >> Oversight review & Risk Assessment<br /> >> DR and BCP requirements<br /> >> Customer Approval & Signoff<br /> 1: - QQ<br /> <br /><span style="font-size: small;"><span style="font-size: small;">(9 Hour) </span></span>[LAB] Appliance Setup <br /> 1: - Prereq's - Before you begin<br /> 2: - Juniper entry point appliance - SS5<br /> 2: - Cisco entry point appliance - ASA 5505<br /> 2: - Netgear entry point appliance - FVS 318<br /> 2: - IPSec VPN end-to-end setup and configuration<br /> 1: - QQ<br /> <br /><span style="font-size: small;"><span style="font-size: small;"><span style="font-size: small;">(3 Hour) </span></span></span>[LAB] Active Monitoing Setup<br /> - Introduction to Netflow Vs. SNMP<br /> - Monitoring Web Servers<br /> - Monitoring DNS Servers<br /> - Monitoring IMAP Servers (Dovecot)<br /> - Monitoring Email Gateway (Postfix)<br /> - Monitoring from external service providers - pingdom<br /> 1: - QQ<br /><br /><span style="font-size: small;"><span style="font-size: small;"><span style="font-size: small;"><span style="font-size: small;">(4 Hour) </span></span></span></span>[LAB] Active Response Management<br /> - Firewall based Block Rules<br /> > Single IP<br /> > Entire Subnet<br /> - Reporting Abusive Originating IPs<br /> - Blacklist and Backscatterers<br /> - Load Balancing Services<br /> - Failover Services<br /> 1: - QQ<br /><br />========================================================================<br /><br /><br /></span></p> | ||
Revision as of 16:52, 5 April 2015
Classroom Training Document and Materials eShare:
Total Instruction Hours:
21 hours of Classroom Instructions
30 hours of Hands-on Lab
9 hours of Testing (in 9 separate Tests)Contents
</span></p>
<p> </p>
<p>The Course Curriculum for this Advanced Security Training:</p>
<p> </p>
<p>(3 Hour) [CLASS] Introduction to networks security
Net total is 60 hours of curriculum
<h5></h5><h5></h5><h5></h5><h5></h5></h5>
- Network Concepts
>> IPV4, Device ID, Network cards - hard/soft
>> Authentication Factors
>> Authentication & Authorization
>> New Authentication Systems
(3 Hour) [CLASS] Infrastructure Security
>> Context Aware Firewalls (ASA)
>> Policy Management
>> Object Definition and ACL Management (ASA)
>> Infrastructure & Security Protocols
>> Enterprise Security Products (PDF and Notes)
>> Perimeter Security
>> In-Network Security
>> DNS Security is Corporate #1 Priority
>> Identity Management
</p>
<p>
- LDAP and Directory Management
>> Traditional data storage Vs. Tree structure
>> Caching Vs Searching
>> Profiling Vs Tabulation
>> Active Directory and other common LDAP vendors
>> Virtual and Meta
<h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5>=
(3 Hour) [CLASS] Security Management
</p>
<p> - Intrusion Prevention
- All are based on behaviour analysis
- Detection
- VPN -
>> IPSec Vs SSL
>> RADIUS
>> Site-to-Site VPNs
- Wireless Security
>> WEP Vs WPA Vs WPA2
- Vulnerability Analysis
>> Using existing tools
>> Without using any software tools</p>
<p>
- Security Policies
>> Corporate Security Policies
>> Hackers Hat - breaking corporate security code
>> Endpoint Assessments
>> Enabling Intrusion Prevention System (IPS)
- Best Practices - Cyber-Security
>> Traditional Hacking Techniques
>> Monitor telemetry data
>> Event Coorelation for alarms
>> Risk Analysis and Mitigation
- Review malware signatures
>> Viruses & Worms
>> Network Trace gathering and analysis
- Review common hacking techniques and kits
>> Backdoor
>> Botnets
>> DoS and DDoS
>> Tunnel Attacks
(3 Hour) [CLASS] Leading Companies and Leading Products - how-to-use, why-to-use, where-to-apply
- Top 3 Products - in-depth
1: - QQ
(3 Hour) Identification:
> 3-[CLASS] Network analysis and deep-dives
- Identify Compromised System
- Isolate Zombie
- Stopping malware
(3 Hour) -[CLASS] Intrusion signatures & footprints
- Signature Analysis
- P32/PDOM screenshots
- RootKits
1: - QQ
(3 Hour) [LAB] Prevention - Perimeter Security
- Introduction
- PKI - Create cert, sign them, install them, trust them and external providers
(3 Hour) [CLASS] Firewalls & Rulesets
- ACE, ACL, ACI
- LDAP and Directory Infrastructure
1: - QQ
(3 Hour) [LAB] Adaptive Security
>> Introduction to Software based security:
> Clamscan, Bayes Algo, Other softwares
> IPtables
> Software firewal of Linux
> Hardening Kernel and Linux services
1: - QQ
(3 Hour) Hardware based security
> IPS
> Firewall
> Shun Hosts
1: - QQ
(3 Hour) [CLASS] Offensive Network Design: Network
- Review existing network
>> Interview Customer - questions to ask - checklist
>> Checklist for Table Of Obervation - recording
>> Security checklist for implementation
>> Master Checklist for design analysis
- Review current architecture
>> First create your proposed topology and artifacts
>> Peer review of topo
>> Oversight review & Risk Assessment
>> DR and BCP requirements
>> Customer Approval & Signoff
1: - QQ
(9 Hour) [LAB] Appliance Setup
1: - Prereq's - Before you begin
2: - Juniper entry point appliance - SS5
2: - Cisco entry point appliance - ASA 5505
2: - Netgear entry point appliance - FVS 318
2: - IPSec VPN end-to-end setup and configuration
1: - QQ
(3 Hour) [LAB] Active Monitoing Setup
- Introduction to Netflow Vs. SNMP
- Monitoring Web Servers
- Monitoring DNS Servers
- Monitoring IMAP Servers (Dovecot)
- Monitoring Email Gateway (Postfix)
- Monitoring from external service providers - pingdom
1: - QQ
(4 Hour) [LAB] Active Response Management
- Firewall based Block Rules
> Single IP
> Entire Subnet
- Reporting Abusive Originating IPs
- Blacklist and Backscatterers
- Load Balancing Services
- Failover Services
1: - QQ
<h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5><h5></h5>==
</p>
