Training
Provided by Advanced Concepts
Security +
Course
Specifications
Course number: 085544
Software:
Microsoft Windows 2000 Server or
Windows 2000 Advanced
Server and Windows XP Professional, with other software.
Course length: 5.0 day(s)
Course
Description
Security+ Certification is the primary course you will need to take if your job responsibilities include securing network services, network devices, and network traffic. It is also the main course you will take to prepare for the CompTIA Security+ examination (exam number TBD). In this course, you'll build on your knowledge and professional experience with computer hardware, operating systems, and networks as you acquire the specific skills required to implement basic security services on any type of computer network.
Target Student: IT professional who has networking and administrative skills in Windows-based TCP/IP networks and familiarity with other operating systems, such as NetWare, Macintosh, UNIX/Linux, and OS/2, who wants to: further a career in Information Technology by acquiring a foundational knowledge of security topics; prepare for the CompTIA Security+ examination; or use Security+ as the foundation for advanced security certifications or career roles.
Prerequisites: CompTIA A+ and Network + certifications, or equivalent knowledge, and 6-9 months experience in networking, including experience configuring and managing TCP/IP. Students can obtain this level of skill and knowledge by taking the following Element K courses: A+ Certification: Core Hardware A+ Certification: Operating Systems Network+ Certification: 3rd Edition
Students can obtain additional TCP/IP knowledge from the Element K course Windows 2000: Network and Operating System Basics.
Although not required, students might find it helpful to obtain foundational information from introductory OS administration courses.
Delivery Method: Instructor led, group-paced, classroom-delivery learning model with structured hands-on activities.
Hardware Requirements
To run this course make sure all equipment is on the Microsoft Hardware Compatibility List (HCL) for Microsoft Windows 2000 Server and Microsoft Windows XP Professional. The Microsoft Windows HCL can be found at: http://www.microsoft.com/hcl. Internet access is recommended due to the numerous URLs referenced throughout the book. Students will benefit from being able to access the latest information about security such as new types of attacks and the latest security breaches to different products Make sure to use IP addresses that do not conflict with other portions of your network. You will need one computer for each student and one for the instructor. You will need a display system to project the instructor s computer screen, which should be set to 800 x 600 screen resolution and 256 colors. Each computer will need a:
Pentium processor, 300 MHz or greater.
128 megabytes (MB) of Random Access Memory (RAM) or greater. (256 MB recommended)
6 gigabyte (GB) hard disk or larger
Super VGA (SVGA) or higher resolution monitor capable of .a screen resolution of at least 800 x 600 pixels and a video adapter with at least a 4 MB of memory.
3.5 1.44 MB floppy-disk drive
Bootable CD-ROM drive.
Mouse or compatible tracking device
Network adapter and cabling connecting each classroom computer.
Network interface card and network cabling.
Platform Requirements
Windows
Software Requirements
Microsoft Windows 2000 Server or Windows 2000 Advanced Server with sufficient licenses.
Microsoft Windows 2000 Service Pack 2 or later.
Microsoft Windows XP Professional with sufficient licenses. Be sure that you meet the activation requirements for your classroom situation.
Microsoft Windows XP Service Pack 1
Microsoft Exchange Server 2000 Standard Edition (Optionally, Microsoft Exchange Server 2000 Enterprise Edition can be substituted) with sufficient licenses and Microsoft Exchange 2000 Service Pack 2 (or later).
Microsoft Windows 2000 Server Resource Kit with sufficient licenses.
Microsoft Network Monitor 2.0 (From SMS 2.0 retail CD.)with sufficient licenses
Microsoft Internet Security and Acceleration (ISA) Server 2000 with sufficient licenses
Also list any software packages students use in activities (do not list hacking packages instructor downloads privately to create breaches - that will be covered in IE in addl instructor note appendix for legal reasons.)
Performance-Based Objectives
Upon successful completion of this course, students will be able to:
identify security threats.
harden internal systems and services.
harden internetwork devices and services.
secure network communications.
manage a PKI.
manage certificates.
enforce an organizational security policy.
monitor the security infrastructure.
respond to network attacks.
respond to software-based attacks.
Course Content
Lesson 1: Identify Security Threats
Topic 1A: Classify Network Attacks
Topic 1B: Classify Software-Based Attacks
Lesson 2: Harden Internal Systems and Services
Topic 2A: Harden Base Operating Systems
Topic 2B: Harden Directory Services
Topic 2C: Harden DHCP Servers
Topic 2D: Harden Network File and Print Servers
Topic 2E: Harden Application Servers
Lesson 3: Harden Internetwork Devices and Services
Topic 3A: Harden Internetwork Connection Devices
Topic 3B: Harden DNS and BIND Servers
Topic 3C: Harden Web Servers
Topic 3D: Harden FTP Servers
Topic 3E: Harden NNTP Servers
Topic 3F: Harden Email Servers
Topic 3G: Harden Collaboration-based Servers
Lesson 4: Secure Network Communications
Topic 4A: Secure Network Traffic Using IP Security (IPSec)
Topic 4B: Secure Directory Services Communications
Topic 4C: Secure Wireless Traffic
Topic 4D: Secure Client Internet Access
Topic 4E: Secure the Remote Access Channel
Lesson 5: Manage Public Key Infrastructure (PKI)
Topic 5A: Implement a CA Hierarchy
Topic 5B: Harden a Certificate Authority
Topic 5C: Back Up CAs
Topic 5D: Recover the CA
Topic 5E: Restore Lost Keys
Lesson 6: Manage Certificates
Topic 6A: Enroll Certificates
Topic 6B: Secure Network Traffic Using Certificates
Topic 6C: Renew Certificates
Topic 6D: Suspend Certificates
Topic 6E: Revoke Certificates
Topic 6F: Destroy Certificates
Topic 6G: Publish a Certificate Revocation List (CRL)
Lesson 7: Enforce Organizational Security Policy
Topic 7A: Enforce Corporate Security Policy Compliance
Topic 7B: Enforce Legal Compliance
Topic 7C: Enforce Physical Security Compliance
Topic 7D: Educate Users
Topic 7E: Implement a Change-Management Plan
Lesson 8: Monitor the Security Infrastructure
Topic 8A: Configure Auditing
Topic 8B: Configure Security Alerts
Topic 8C: Install Intrusion-Detection Software
Topic 8D: Set Up a Honeypot
Topic 8E: Monitor Port Usage
Topic 8F: Monitor Resource and Service Access
Topic 8G: Analyze Resource and Service Permissions
Topic 8H: Run Vulnerability Scans
Lesson 9: Respond to Network Attacks
Topic 9A: Diagnose the Cause of a Security Breach
Topic 9B: Respond to Port Scanning Attacks
Topic 9C: Respond to Eavesdropping Attacks
Topic 9D: Respond to Denial of Service/Distributed Denial of Service (DoS/DDoS) Attacks
Topic 9E: Respond to IP Spoofing/Hijacking Attacks
Topic 9F: Respond to Replay Attacks
Topic 9G: Respond to Man-in-the-Middle Attacks
Lesson 10: Respond to Software-based Attacks
Topic 10A: Respond to Malicious Code Attacks
Topic 10B: Respond to Attacks Against the Default Security Configuration
Topic 10C: Respond to Misuse of Privilege Attacks
Topic 10D: Respond to Password Attacks
Topic 10E: Respond to Software-Exploitation Attacks
Topic 10F: Respond to Backdoor Attacks
Topic 10G: Respond to Auditing Attacks
Topic 10H: Respond to Takeover Attacks
| This is primarily ilt training |  | Contact Advanced Concepts for more information |
|
| Training Presented in: | English |
|
