Course Title: IT Security Practitioner

IT Security Practitioner
Description:
“Learn the advanced security administration tools and get yourself prepared for the CASP exam (CAS-001)!”
Training Category:
Information Technology
Target Audience:
IT Administrator, System Engineers, Network Engineers, and those who want to sit for the CASP exam (CAS-001).
Duration:
2 Days
Course Introduction ›
This is a 2-Day IT Security Practitioner training for those who want to learn the advanced tools and techniques on IT security administration. It is also designed for those who want to sit for the CASP exam (CAS-001). This hands-on labs and lectures will let you prepare for the CASP exam with confidence. It will focus on enterprise security risk management, policies and procedures, legalities research, and analysis integration of computing.
Course Objectives ›
In this hands-on workshop, participant will learn:

  • Advanced defensive controls such as web application firewalls
  • Address threats such as cross-site scripting (XSS) and cross-site request forgery (XSRF)
  • Perform advanced port scanning techniques used to avoid detection
  • Best practices in intrusion detection system (IDS) design and signature development
  • Stop hackers before they access your network

Course Outline ›
DAY 1
1. Enterprise Security Architecture

  • Basics of Enterprise Security
  • Enterprise Structure
  • Enterprise Security Requirements

2. Enterprise Security Technology

  • Common Network Security Components and Technologies
  • Communications and Collaboration Security
  • Cryptographic Tools and Techniques
  • Advanced Authentication

3. Enterprise Resource Technology

  • Enterprise Storage Security Issues
  • Distributed, Shared, and Virtualized Computing
  • Cloud Computing and Security

4. Security Design and Solutions

  • Network Security Design
  • Conduct a Security Assessment
  • Host Security

DAY 2
5. Application Security Design

  • Application Security Basics
  • Web Application Security

6. Managing Risk, Security Policies, and Security Procedures

  • Analyze Security Risk
  • Implement Risk Mitigation Strategies and Controls
  • Implement Enterprise-Level Security Policies and Procedures
  • Prepare for Incident Response and Recovery

7. Enterprise Security Integration

  • Technology Lifecycle
  • Interorganizational Change
  • Integrate Enterprise Disciplines to Achieve Secure Solutions

8. Security Research and Analysis

  • Perform an Industry Trends and Impact Analysis
  • Perform an Enterprise Security Analysis