|
Training Program on Network Security Assessment and Proactive Defense
(Level 2 Course in Information Security)
Duration and Methodology | Eligibility Criteria | Aims & Objectives | Course Content | Download Brochure
Duration and Work Schedule
Duration: Eight weeks
Date of Commencement: 05.04.2010
Date of Completion: 28.05.2010
Training programme will consist of expert lectures, demonstrations, practical hands-on, sesssions
Eligibility Criteria
Graduate in Science (Electronics/Computer Science/Telecommunications/ or equivalent) with some experience or Graduate of Industrial Training Institute in any of the areas mentioned in the Course contents/Two years technical course in Electronics/Electrical/Telecommunication after 12 years of schooling.
This course is very effective for professionals from having 1-2 Years experience in Information Security.
Aims & Objectives
Prevent hackers, worms, and disgruntled employees from destroying your organizations information assets, a skill that could be worth millions. Network security experts claim that current defenses against such attacks are not sufficient. Future security systems should better identify failures at the earliest phase, by distributed sensing and dynamic reconfiguration of the network.
Developing Manpower having competency to defend attacks on national critical infrastructure.
Course Contents
TCP/IP in depth for Intrusion Detection
Information Assurance
The Need for Security Analysis ,Risk Management, Risk Management Principles, Computer Ethics, Cyber Crime, Cyber War ,Cyber Laws ,Access Control catagories,Types and assurance. Business continuity and Disaster Recovery Planning, Operation Security.
Network Auditing and Network Security Assessment
Measuring and managing overall security exposure and risk, Identify security holes and flaws in their networked systems, Network traffic analysis, advanced sniffing techniques, Network Monitoring to indentify Infected Computer, Defending against Botnets and Stealthy Malware, Audit Reporting
Hacker Methodology and Network Penetration Testing
Classification of Attacks ,Continuous Vulnerability Assessment and Remediation ,Vulnerability Analysis, Researching alert information, The vulnerability management cycle, Host enumeration and port and vulnerability scanning ,OS Finger Printing ,Reconnaissance Tools, Network Scanning Tools ,Penetration testing methodologies Web Application Vulnerabilities Testing, Web Application Technologies Overview
Understanding Malicious Code
Types of Malicious codes, Malicious Mobile codes, Examining Malicious codes, Observing, File System, Process, Network, and API Activity
Network Intrusion Investigation
Network Security Monitoring products, Understanding IDS Logs, Firewall Logs Log additional traffic between the source and the destination, Logging packets from the source, Intrusion Testing
Fundamentals of Security Incident Response
Incident Response Policy, Plan, and Procedure Creation, Handling an Incident, Handling Denial of Service Incidents, Handling Malicious Code Incidents, Media Sanitization
Defenses against Penetrations
Anomaly Detection and Mitigation ,Configuring Intrusion Prevention System ,Protecting critical IT infrastructure, Defense Tactics for Denial of Service Attacks ,Firewall weakness and configuring unified Threat management appliances ,Adaptive Security Appliance ,Patch and configuration management ,Secure Configurations of Network Devices ,DMZ setup, configuration and DMZ security policy ,Tracking Hackers using Honeypots ,Building Infrastructure, Evading IDS, Honeypots and Firewalls , Protecting against inside attackers
Continuous Security Assurance Program
PCI DSS, FDCC Compliance, Security metrics, Critical Security Controls, New Emerging Information Security Technologies and Solutions, Compliance advices
Project Work
For any query, eMail: itec@cdacmohali.in
|