Network Security Administrator

Course#: BSSEC1123

About this Course

Course Type Course Code Duration
Software Security BSSEC1123 5 Days

This Program looks at the network security in defensive view while the CEH certification program looks at the security in offensive mode. The ENSA program is designed to provide fundamental skills needed to analyze the internal and external security threats against a network, and to develop security policies that will protect an organization’s information. Students will learn how to evaluate network and Internet security issues and design, and how to implement successful security policies and firewall strategies. In addition, they will learn how to expose system and network vulnerabilities and defend against them.

Why Attend this Course?

What Makes this Course Stand Apart?

Accelerator Plus1

What you will Learn?

* Network Security issues
* Why is Network Security Required?
* How to evaluate network and Internet security issues and design
* How to implement successful security policies and firewall strategies
* How to expose system and network vulnerabilities and defend against them

Audience

System Administrators, Network Administrators, System Engineers, Firewall Administrators, Network Managers, IT Managers, IT Professionals and anyone who is interested in network security technologies and of course, those who plan to take the CEH course but lack the requisite experience.

Prerequisites

Fundamental knowledge of Operating Systems and Networking Concepts.

Course Outline

Module 01:  Fundamentals of Computer Network
* Key elements of network
* Logical Elements of Network
* Types of network media
* Automated Information Systems (AIS)
* Critical  information characteristics
* Information states
* Operations Security (OPSEC)
* Object reuse(computer security)
* OSI Model
* Transmission Modes
* Types of Transmission
* Logical Network Classification
* Network Topologies
* Physical Network Classification
* Network Equipments

Module 02: Network Protocols
* Introduction to protocols
* Implementing Network protocols
* Application Layer Protocols
* Presentation Layer Protocol
* Session Layer Protocol
* Transport  Layer Protocols
* Network Layer Protocols
* Data link Layer Protocol

Module 03: Protocol Analysis
* Overview of tcp/ip
* Relation to other Protocol
* Tcp/ip Protocol suite
* Windowing
* Sliding Window
* Acknowledgement
* TCP
* IP

Module 04: Hardening Physical Security
* Need for physical security
* Security Statistics
* Physical Security Breach Incidents
* Factors Affecting Physical Security
* Physical Security Threats
* Premises Security
* EPS (Electronic Physical Security)
* Challenges in Ensuring Physical Security
* Mantrap
* Physical Security Checklist
Module 05: Network Security
* Overview of Network Security
* The need for network security
* The goals of network security
* Security awareness
* Functions of Network security administrator
* Communication Security (COMSEC)
* Functions of INFOSEC Officer
* Functions of information resources management staff
* program or functional managers
* security office
* senior management
* system manager and system staff
* telecommunications office and staff
* Functions of audit office
* Functions of OPSEC managers
* Role of end users
* Network Security at:
* Transmission Security
* Legal Elements
* Countermeasures: cover and deception
* Reporting security violations

Module 06: Security Standards Organizations
* Internet Corporation for Assigned Names and Numbers (ICANN)
* International Organization for Standardization (ISO)
* Consultative Committee For Telephone and Telegraphy (CCITT)
* International Telecommunication Union (ITU)
* American National Standards Institute(ANSI)
* Institute Of Electronics and Electrical Engineers(IEEE)
* Electronic Industries Association
* National Center for Standards and Certification Information (NIST)
* World Wide Web Consortium (W3C)
* Web Application Security Consortium (WASC)

Module 07: Security Standards
* Introduction to Internet Standards
* Standards Creation Committee
* Internet Standards
* Cabling Standards
* Specification Standards
Module 08: Security Policy
* Security Policy overview
* Concept of Security Policy
* Key Security Elements
* Security Awareness Programs
* Vital role of a security policy
* Classification of Security policy
* Contents of Security Policy
* Privacy and Confidentiality
* Security levels
* Agency Specific AIS and Telecommunications Policies
* Configuration of security policy
* National Policy and Guidance
* Implementation of security policy
* Incident Handling and Escalation Procedures
* Security operations and life cycle management
* Defining Responses to Security Violations
* Presenting and Reviewing the Process
* Compliance with Law and Policy
* Transborder encryption issues
* Points To Remember While Writing Security Policy
* Issue-specific Security Policy (ISSP)
* Creating and Managing ISSPs

Module 09: IEEE Standards
* Introduction to IEEE standards
* IEEE LAN Protocol Specification
* Wireless Networking Standards

Module 10: Network Security Threats
* Current Statistics
* Types of Attackers
* Classification of Hackers
* Techniques
* Common Vulnerabilities and Exposures (CVE)
* Attacks
* Hiding Evidence of an Attack
* Problems Detecting Network Attacks
* Network Scanning Tools:

Module 11:  Intrusion Detection System (IDS) and Intrusion Prevention Systems (IPS)
* Introduction to IDS
* History of Intrusion Detection
* Intrusion Detection Concepts
* IDS for an Organization
* Characteristics of IDS
* Aggregate Analysis with IDS
* Types of IDS
* Deployment of IDS
* Types of Signatures
* True/False-Positive/Negative
* Major Methods of Operation
* IDS Tool
* Intrusion Prevention System
* Information Flow in IDS and IPS
* IPS Tool
* IDS vs. IPS
* Intrusion Detection Checklist

Module 12: Firewalls
* Firewalls: Introduction
* Security features
* Multiple components of Firewall
* Firewall Operations
* Software Firewall
* Hardware Firewall
* Types of Firewalls
* Firewall Features
* Establishing Rules and Restrictions for your Firewall
* Firewall Configuration Strategies
* Scalability
* Firewall Architecture
* Handling threats and security tasks
* Protection against hacking
* Centralization and Documentation
* Multi-layer firewall protection
* Firewall deployment strategies
* Specialty firewalls and Reverse firewalls
* Advantages of using Firewalls
* Disadvantages of using Firewalls
* Threats
* Limitations of Firewalls
* Personal Firewall Software
* Personal Firewall Hardware
* Firewall Log Analysis
* Firewall Tools
* Comparison of Various Firewall Products
* T-REX Open Source Firewall
* SQUID
* WinGate
* Symantec Enterprise Firewall
* Firewall Testers

Module 13: Packet Filtering and Proxy Servers
* Application layer gateway
* Proxy servers

Module 14: Bastion Host and Honeypots
* Bastion Hosts
* Honeypot
* Honeynet

Module 15: Securing Modems
* Introduction to Modems
* Origin of Modems
* Modem Features
* Types of Modems
* Modem Security
* Categorizing Modem Access
* Modem Attacks
* Modem Risks
* Modem Failure Symptoms
* Troubleshooting Modems

Module 16: Troubleshooting Network
* Introduction to troubleshooting
* A Troubleshooting Methodology
* Troubleshooting Network devices
* Troubleshooting Network Slowdowns
* Troubleshooting Wireless devices
* Troubleshooting Methodology
* TCP/IP Troubleshooting Utilities

Module 17: Hardening Routers
* Introduction to Routers
* Routing Metrics
* Multiple Routing
* Types of Routers
* Routing Algorithms
* Internet work Operating Systems (IOS)
* IOS: FEATURES
* Routing Principles
* Modes Of Operation
* IP Routing
* IP Source Routing
* Configuration of Routers
* Router Configuration Modes
* Finger Tool
* Disabling the auxiliary and closing extra interfaces
* BOOTp service
* TCP and UDP small servers
* Disabling Proxy ARP
* Disabling SNMP
* Disabling NTP
* Hardening a Router
* Cisco Discovery Protocol
* Filtering Network Traffic
* Access Control List
* Log System Error Messages
* Securing Routers: Committed Access Rate
* Securing Routers: Secure Shell
* Router Commands
* Types of Routing
* Routing Protocols
* Routing Table Maintenance Protocol (RTMP)
* Troubleshooting a router
* Components of router security
* Router security: testing tools

Module 18: Hardening Operating Systems
* BIOS security
* Windows Registry
* Configuring Windows Services
* Resource Access
* Discretionary Access Control List (DACL)
* Objects And Permissions
* Rights Vs Permissions
* NTFS File System Permissions
* Encryption File System
* Windows Network Security
* Modes of Operation (Describes the security conditions under which the system actually functions)
* AIS
* Windows infrastructure features
* Kerberos Authentication And Domain Security
* Trust Relationships Between Domains
* IP Security
* Windows Security Tools
* Windows
* Windows Certificate Authorities
* Certificate Authority Requirements
* Desktop Management
* File Management
* Linux
* Pluggable Authentication Module
* Network Information Services
* Group Management Utilities
* Permission Management Tools
* System Logger Utility
* Unix Security
* Macintosh Security
* Vista security

Module 19: Patch Management
* Introduction
* The Patch Concept
* Patch testing
* Patch Monitoring and Management
* Consolidating Patches on Red hat Network
* Red Hat Up2date Patch Management Utility Installation Steps
* Red Hat Up2date Patch Management: Command Line Interface
* Reporting
* Patch Management Process
* Windows Update Services
* Microsoft Patch Management Tool: Microsoft Baseline Security Analyzer
* Patch Management Tool

Module 20: Log Analysis
* Introduction to Log Analysis
* Overview of log analysis
* Audit Events
* Log Files
* Limitations of log files
* Monitoring for Intrusion and Security Event
* Log Analysis Tools
* How to Secure Logs(Log Security)
* Inc setting up of Servers: IIS & Apache

Module 21: Application Security
* Importance of Application Security
* Why Is Web Security So Difficult?
* Application Threats and Counter Measures
* Application dependent guidance
* Web Applications
* System Life Cycle Management
* Telecommunications Systems
* Securing voice communications
* Securing data communications
* Securing of keying material
* Transmission security countermeasures (e.g., callsigns, frequency, and pattern forewarning protection)
* Embedded Application Security (EMBASSY)
* Secure Coding
* Threat modeling

Module 22: Web Security
* Overview of Web Security
* Common Threats on Web
* Identifying Unauthorized Devices
* Restrictive Access
* Network Addresses
* Tracking the Connectivity: Tracert/Traceroute
* Testing the Traffic Filtering Devices
* IIS Server
* Client Authorization
* Client-Side Data
* Server-side data
* Client Authentication
* Input Data Validation
* Browsing Analysis
* Browser Security
* Plug-ins
* Common Gateway Interface(CGI)

Module 23: E-mail Security
* Overview of E-mail
* History of E-mail
* Basics of E-Mail
* Types of E-Mail
* Web Based Versus POP3 E-mail
* Components of an Email
* E-Mail Servers
* E-Mail Encryption
* Installing WorkgroupMail
* Configuring Outlook Express
* Secure Email
* E-mail Authentication
* E-mail protocols
* Client and server architecture
* E-Mail Security Risks
* How to defend against E-Mail security risks
* Tools for Email Security
* Tracking e-mails
Module 24: Authentication: Encryption, Cryptography and Digital Signatures
* Authentication
* VeriSign Authentication
* Encryption
* Cryptography
* Digital Certificates
* Certificate Encryption Process
* Public and Private Keys
* Digital Signatures
* key management protocols (bundling, electronic key, over-the-air rekeying)
Module 25: Virtual Private Networks and Remote Networking
* Introduction to Virtual Private Network
* Types  of VPN
* Tunneling
* Point to point Tunneling Protocol(PPTP)
* Layer 2 Tunnel Protocol
* VPN Security
* Connection to VPN
* Step 1: Setting Up VPN
* Step 2: Implement DHCP Services
* Step 3: Create An Enterprise Certificate Authority
* Step 4: Install IAS
* Step 5: Configure IAS
* Step 6: Create A Remote Access Policy
* Step 7: Configure The VPN Server
* Step 8: Associate The VPN Server With The DHCP Server
* Step 9: Configure Remote Clients
* Step 10: Test The Client Connection
* VPN Policies
* VPN Registrations And Passwords
* Risk Associated With VPN
* Pre Implementation Review – Auditing
* Implementation Review – Auditing
* Post Implementation Review And Reporting
* VPN Product Testing
* Common VPN Flaws
Module 26: Wireless Network Security
* Introduction to Wireless
* Types of Wireless Networks
* Components of Wireless Network
* Wireless Technologies
* Wireless Communications: Examples
* Devices using Wireless Communications
* Service Set IDentifier (SSID)
* Detecting Wireless Network
* Types of Wireless Attacks
* Wireless Threats
* Overview of Wi-Fi
* Open Wi-Fi Vulnerabilities
* WLANs in Public Space
* Wired Equivalent Privacy
* WAP
* Wireless Network Attack Tool: AirSnarf
* Tools to detect MAC Address Spoofing: Wellenreiter v2
* WLAN Management
* Wireless Security
* Wireless Auditing
* DHCP Services
* Mobile Security Through Certificates
* Certificate Management Through PKI
* Troubleshooting Wireless Network
* Wireless Network Security Checklist

Module 27: Creating Fault Tolerance
* Network Security: Fault Tolerance
* Why Create Fault Tolerance
* Network Security
* Reasons for Network Failure
* Reasons For System Failure
* Preventive Measures

Module 28: Incident Response
* What is an Incident
* Category of Incident
* Types of Incident
* Step by Step Procedure
* What Is an Incident Response
* Six Step Approach for Incident Handling (PICERF Methodology)
* Incident Response Team
* Obstacles in Building a Successful Incident Response Team
* Computer Security Incident Response Team

Module 29: Disaster Recovery and Planning
* Overview of Disaster and its types
* What is a Disaster Recovery
* Principles of Disaster Recovery
* Types of Disaster Recovery Systems
* Backup Site
* Recovery of Small and Large Computer Systems
* Emergency Management
* Disaster Recovery Planning
* Security Planning
* Process of Disaster Recovery Plan
* Disaster Recovery Testing
* Contingency Planning/Disaster Recovery
* contingency plan components, agency response procedures and continuity of operations
* team member responsibilities in responding to an emergency situation
* guidelines for determining critical and essential workload
* determination of backup requirements
* development of procedures for off-site processing
* development of plans for recovery actions after a disruptive event
* emergency destruction procedures
* Disaster Recovery Planning Team
* Business Process Inventory
* Risk Analysis
* Risk Management
* Business Continuity Planning Process
* Emergency destruction procedures
* Six myths about Business Continuity Management and Disaster Recovery
* Disaster Prevention

Module 30: Network Vulnerability Assessment
* Vulnerability Assessment
* Features of a good vulnerability assessment
* Vulnerability classes
* Source Of Vulnerabilities
* Choice of Personnel for Network Vulnerability Assessment
* Network vulnerability Assessment methodology:
* How to assess vulnerability assessment tools
* Selecting vulnerability assessment tools
* BIOS security
* Windows Registry
* Configuring Windows Services
* Resource Access
* Discretionary Access Control List (DACL)
* Objects And Permissions
* Rights Vs Permissions
* NTFS File System Permissions
* Encryption File System
* Windows Network Security
* Modes of Operation (Describes the security conditions under which the system actually functions)
* AIS
* Windows infrastructure features
* Kerberos Authentication And Domain Security
* Trust Relationships Between Domains
* IP Security
* Windows Security Tools
* Windows
* Windows Certificate Authorities
* Certificate Authority Requirements
* Desktop Management
* File Management
* Linux
* Pluggable Authentication Module
* Network Information Services
* Group Management Utilities
* Permission Management Tools
* System Logger Utility
* Unix Security
* Macintosh Security
* Vista security

0

Start typing and press Enter to search