This five-day course is designed to provide participants with practical techniques for protecting the security of an organization's information assets and resources, beginning with concepts and proceeding on to technical implementations.
The course focuses on understanding and applying the concept of survivability through the effective management of risk, threats, policy, system configuration, availability, and personnel. The course also addresses incident response and provides a technical foundation for working with TCP/IP security and cryptography. The final section of the course helps participants learn to design a secure network architecture managing host systems, securing network services and infrastructure, working with firewalls, and understanding intrusion detection and prevention.
The principles, strategies, and practices covered are applicable to most system platforms and network environments. To illustrate important concepts and security technologies, demonstrations and exercises will include implementations applicable to Linux and Windows systems as well as Cisco Internetworking equipment.
The course involves extensive hands-on laboratories utilizing heterogeneous network environment, scenario-based exercises, lecture/briefings, and open discussion to help participants develop their understanding of the problems and strategies for securing information systems and networks.
Hands-on labs and demonstrations include subjects such as: Network scanning and enumeration; Packet capture and analysis, Windows Group Policy and Security templates; Network traffic encryption with IPSec; Intrusion detection and prevention with Snort; as well as information on personal and enterprise firewalls, password cracking, and extensive hacking/hardening of Linux, Windows, and Cisco platforms in both wireless and cabled networks. Each student will have the use of a laptop for the duration of the course, as well as access to a wide variety of networked systems. This CERT incident handling course, which provides a well-rounded understanding of incident handling practices and functions, can be used to prepare for the CERT-Certified Incident Handler Certification.
There are no prerequisites for this course.
Participants will receive a course notebook and a downloadable copy of course materials.
This five-day course meets at the following times:
Days 1-4, 9:00 a.m.-5:00 p.m.
Day 5, 9:00 a.m.-2:30 p.m.
Training courses provided by the SEI are not academic courses for academic credit toward a degree. Any certificates provided are evidence of the completion of the courses and are not official academic credentials.
Course Fees [USD]
U.S. Industry: $2800
U.S. Government/Academic: $2300
Carnegie Mellon University/Software Engineering Institute offices will be closed for winter break, December 23, 2016-January 2, 2017. SEI course registrations received during this period will be confirmed and enrollment completed on January 3, 2017.
This course may be offered by special arrangement at customer sites.