Defensive Security Engineering
Course Code: IFIS/SCE/CS005
About this Course
The course is a practical course which covers network, system and application security elements. The course includes practical secure/hardened setups for applications, systems and network devices in hands-on labs for the students to practice their new skills before deploying these technologies and strategies in a production network.
The primary sections of the course are divided up into network security and endpoint security. Network security will teach you secure network design concepts, configuration of network appliances such as switches, and a look into the secure configuration of firewalls, IDS/IPS, web filtering and advanced malware protection. The endpoint security section focuses mainly on Windows security, as most networks have a majority of Windows systems. You will also learn Active Directory, Group Policy, patch management, endpoint hardening and the vulnerability management within enterprise networks.
These topics are taught in a practical manner with step-by-step guides on deploying the actual technology in use. You will leave this class knowing exactly how to accomplish these tasks.
The Course Outline
What You Will Learn?
- Nmap and port scanning to discover hosts and services on a computer network
- Windows- and Linux-specific vulnerabilities
- Defend common misconfigurations to protect potentially sensitive system information
- Maintaining access once a target is breached
- Metasploit and exploitation to verify vulnerability mitigations and manage security
- Network sniffing to monitor data flowing over computer network links in real time
- Pivot into a network in order to exploit and gain access to as many machines
- The student is required to have a modern laptop device that can support virtualization technologies. With a minimum of 8 GB RAM and 60 GB Of storage.
- Systems administrators
- Network managers
Duration and Fees
Duration: 2 days