CIW Security Professional - Intrusion Detection and Threat Analysis

The CIW Security Professional series focuses on the management and deployment of e-business transaction and security solutions. These courses teach learners to implement e-business security policies by identifying security threats developing counter measures using firewall systems and attack-recognition technologies.

This is primarily online training This is an online eLearning or CBT training program Contact Serebra Learning Corporation for more information

Training Presented in: English

Audience

This course is intended for CIW Security Professionals who are responsible for the implementation of e-business security policies and technologies. The target audiences for these courses are network server administrators firewall administrators systems administrators application developers and IT security officers.

Objective

Topics Include

Unit 1: Intrusion Detection

• Identify key aspects of intrusion detection.
• Identify key responsibilities of an incident response team.
• Identify features of IDS application strategies.
• Identify benefits and drawbacks of network-based IDS applications.
• Identify features of host-based IDS applications.
• Identify factors to be considered for an IDS implementation.
• Identify steps to conduct security scan using eTrust.
• View host network activity in eTrust.
• Identify the steps to generate intrusion detection activity report in eTrust.

Unit 2: Log Analysis

• Identify key aspects of creating baselines for log analysis.
• Identify types of event logs used in Microsoft Windows 2000.
• Enable auditing in Microsoft Windows 2000.
• Identify various keywords that enable logging in Linux systems.
• Filter logs in Microsoft Windows 2000.
• Identify commands for filtering logs in Linux.

Unit 3: Auditing and Security

• Identify key auditing recommendations that enhance security.
• Identify characteristics of an audit report.
• Identify features of various solutions for host auditing.
• Identify methods to secure a router.
• Detecting Promiscuous Mode.
• Identify features of ZoneAlarm.
• Identify features of services used to secure remote connectivity.
• Sequence steps for installing Secure Shell.
• Identify steps in the process of establishing a user-to-user trust relationship.

Duration

6

Minimum Requirements

(Currently no course requirements information)

Media

CDROM

• CIW Security Professional - Intrusion Detection and Threat Analysis
• CIW Security Professional - Network Security and Firewalls
• CIW Security Professional - Network Security Introduction
• CIW Security Professional - Network Security Introduction
• CIW Security Professional - Operating System Security
• CIW Security Professional - Operating System Security
• CIW Security Professional - Security Auditing and Attack Techniques
• CIW Security Professional - Security Auditing and Attack Techniques