| Session |
From |
To |
Duration |
Days - Time |
|
| TBD |
TBD |
TBD |
TBD |
TBD |
|
An Information Technology (IT) professional who has networking and administrative skills in Windows-based TCP/IP networks and familiarity with other operating systems, CompTIA A+ and Network+ certifications, or equivalent knowledge, and 6-9 months experience in networking, including experience configuring and managing TCP/IP. Although not required, students might find it helpful to obtain foundational information from introductory operating system administration courses.
At the completion of course students will be able to:
• Identify fundamental concepts of computer security
• Identify security threats
• Harden internal systems and services
• Harden internetwork devices and services
• Secure network communications
• Manage public key infrastructure (PKI)
• Manage certificates
• Enforce organizational security policies
• Monitor the security infrastructure
• Network Infrastructure
• Access Control
• Assessments and Audits
• Cryptography
• Organizational Security
None, although a familiarity with IT and Security Concepts will be beneficial;
Recommended experience: CompTIA Network+ certification and two years of technical networking experience, with an emphasis on security.
• Certification: CompTIA Security+
• Number of questions: 100
• Length of test: 90 minutes
• Passing score: 750 on a scale of 100-900
• Languages: English
• Exam codes: SY0-201
• Lesson 1: Security Fundamentals
• Security Building Blocks
• Authentication Methods
• Cryptography Fundamentals
• Security Policy Fundamentals
• Core system maintenance
• Virus and spyware management
• Browser security
• Social engineering threats
• Lesson 2: Security Threats
• Social Engineering
• Software-Based Threats
• Hardware-Based Threats
• Lesson 3: Hardening Internal Systems and Services
• Harden Operating Systems
• Harden Directory Services
• Harden DHCP Servers
• Harden File and Print Servers
• Lesson 4: Hardening Internetwork Devices and Services
• Harden Internetwork Connection Devices
• Harden DNS and BIND Servers
• Harden Web Servers
• Harden File Transfer Protocol (FTP) Servers
• Harden Network News Transfer Protocol (NNTP) Servers
• Harden Email Servers
• Harden Conferencing and Messaging Servers
• Lesson 5: Securing Network Communications
• Protect Network Traffic with IP Security (IPSec)
• Secure Wireless Traffic
• Harden a Web Browser
• Secure the Remote Access Channel
• Lesson 6: Managing Public Key Infrastructure (PKI)
• Install a Certificate Authority (CA) Hierarchy
• Harden a Certificate Authority
• Back Up a CA and Restore a CA Key
• management and life cycle
• Setting up a certificate server
• Web server security with PKI
• Remote access
• Virtual private networks
• Lesson 7: Managing Certificates
• Enroll Certificates
• Secure Network Traffic by Using Certificates
• Renew Certificates
• Revoke Certificates
• Back Up Certificates and Private Keys
• Restore Certificates and Private Keys
• Lesson 8: Enforcing Organizational Security Policies
• Enforce Corporate Security Policy Compliance
• Enforce Legal Compliance
• Enforce Physical Security Compliance
• Educate Users
• Lesson 9: Monitoring the Security Infrastructure
• Scan for Vulnerabilities
• Monitor for Intruders
• Set Up a Honeypot
• Respond to Security Incidents
• Lesson 10: Cryptography
• Symmetric cryptography
• Public key cryptography
• Lesson 11:Authentication systems
• Authentication
• Hashing
• Authentication systems
• Lesson 12: Messaging security
• E-mail security
• Messaging and peer-to-peer security
• Lesson 13:User and role based security
• Security policies
• Securing file and print resources
• Lesson 14: Access security
• Biometric systems
• Physical access security
• Peripheral and component security
• Storage device security
• Lesson 15: Ports and protocols
• TCP/IP review
• Protocol-based attacks
• Lesson 16: Network security
• Common network devices
• Secure network topologies
• Browser-related network security
• Virtualization
• Lesson17: Wireless security
• Wi-Fi network security
• Non-PC wireless devices
• Lesson 18: Auditing, logging, and monitoring
• System logging
• Server monitoring
• Lesson 19: Vulnerability testing
• Risk and vulnerability assessment
• IDS and IPS
• Forensics
• Lesson 20: Organizational security
• Organizational policies
• Education and training
• Disposal and destruction
• Lesson 21: Business continuity
• Redundancy planning
• Backups
• Environmental controls
