|
In-depth Security
Tracks
CISSP Overview
• Access Control
Systems & Methodology
• Telecom and Network Security
• Security Management Practices
• Application & System Development Security
• Cryptography
• Security Architecture & Models
• Operations Security
• Disaster Recovery
Planning
• Law, Investigations, & Ethics
• Physical Security
Wireless Administration
• Radio
frequency Fundamentals
• Installation, Configuration & Management
• Physical and MAC layers
• Site Surveying
• Spread Spectrum Technologies
• Wireless Standards
• 802.11 Network Architecture
• Wireless LAN Security
• Troubleshooting Wireless LANs
Policy & Procedure
• Project scope management
• Policy management
• Policy definition
• Establishing review teams
• Writing procedures
Information Systems
Forensics
• Investigation & Forensics Basics
• Linux/Unix Forensics
• Legal Issues & Best Practices
• Forensics Tools
• Windows Forensics
Hacking & Countermeasures
• Information Gathering
• Network level attacks
• Operating system attacks
• Web application Attacks
• DOS attacks
• Attack tools & techniques
• Incident handling & Response
Unix/Linux System
Security
• Common Exploits
• Security Tools
• Secure Unix Applications
• Unix security configuration
• Unix Security issues
• Unix hands on Demo
IDS Analysis
• Intro to IDS
• Recognizing Attacks
• Managing IDS
• Commissioning IDS
• Network Analyzation
• Identifying Hacking techniques
• Deploying IDS
• Integrating IDS
Windows System
Security
• Active Directory
• Encryption & Authentication
• Internet Information Server
• GPO's & Security Templates
• Network and Remote Access
• Security & Scripting
Secure Mobility
• Access solutions
• Mobile devices
• Converging technologies
• Anytime, anywhere access
Intrusion Prevention
• Detection
vs. Prevention
• Signature based systems
• Anomaly based systems
• IDS/IPS cost justification
Anti-Spam
• Increase
employee productivity
• Limit legal liability
• Reduce IT costs
• Technology differentiators
Application Security
• Create
hacker resistant applications
• Test application quality
• Audit for security and compliance
• Maintain application integrity
Assessment Methodologies
• Risk reporting
• Audit planning
• On-site investigation
• Report Interpretation
Security Event
Management (SEM) and Event Correlation
• Why SEM?
• Realities and Pitfalls of SEM
• Core Features: Collection, Alerting, Normalization
• Correlation: Real-Time vs Post Process
• What does SEM Bring to the business?
|
