Security Auditing, Attacks, and Threat Analysis (Course Code: 148)

Overview:

The Security Professional implements security policy, identifies security threats, and develops countermeasures using firewall systems and attack-recognition technologies. This individual is responsible for managing the deployment of e-business transaction and payment security solutions.

This hands-on practical course teaches you how to conduct a security audit, how to perform the different phases of an audit, including discovery and penetration. You will also learn how to prevent hackers from controlling your network, and how to generate effective audit reports that can help organisations improve their security and become current with industry security standards. Finally, you will learn about how to recommend industry-standard security solutions for your enterprise. As you examine different threats and learn more about how network hosts participate on a network, you will determine how to assess and manage the risk posed to each system.

This course introduces various tools to help you in the auditing process; you will use some of these tools in practical exercises during the course. You will also study international standards, along with time-tested methods for auditing a network efficiently. After completing this course, you will have in-depth training and experience in analysing the hacker process and associated methodologies. You will be able to counteract attacks using specific, practical tools, including enterprise-grade security-scanning and intrusion-detection programs. You will also learn how to analyse your findings and make recommendations for establishing the best security possible in a given scenario.

Learning Method:

This course uses a combination of instructor presentation, facilitated group discussion, practical exercises and group case study exercises.

Who will benefit from this course?

This course is for:

• Network server administrators
• Firewall administrators
• Systems administrators
• Application developers,
• IT security officers.

It is designed for those with responsibilities to implement e-business solutions security policies, identify security threats and develop countermeasures using firewall systems and attack-recognition technologies, and manage the deployment of security solutions.

Pre-requisites:

Before attending this course you must have completed the Course 146: Network Security and Firewalls, or be able to demonstrate equivalent Internet knowledge.

You must know:

• how to secure networks from unauthorised activity
• how to establish an effective security policy
• how to engage in proactive detection and response / reporting methods
• about authentication procedures, encryption standards and implementation, ports and protocols that hackers manipulate.

What can you expect to gain from this course?

After completing this course, you will know how to:

• perform different phases of a security audit, including discovery and penetration;
• prevent unauthorised users from controlling company networks;
• use Windows 2000 and Linux to identify security issues and suggest industry-standard solutions;
• generate effective audit reports that can help organisations improve their security and become current with industry security standards.

Course Content: