CompTIA Security+

Send an Enquiry Print Friendly Training Facility

Duration : 5 days

Overview

This course is intended for those whose job responsibilities include securing network services, network devices and network traffic. In this course you will build on your knowledge and experience with computer hardware, operating systems and networks as you acquire the specific skills required to implement basic security services on any type of computer network. This course also prepares students for the CompTIA Security+ examination.

Pre-requisites

Delegates attending this course should have networking and administrative skills in Windows based TCP/IP networks and familiarity with other operating systems (i.e. NetWare, UNIX/Linux, OS/2). Delegates should also possess knowledge and experience of PC’s and have a strong understanding of internet technologies.

Objectives

After attending this course you will be able to:

• Understand why security policies and procedures are critical to business continuity.
• Describe the basis of security systems: Authorisation, Authentication, and Accounting.
• Know the use of different access control models.
• Know the main authentication types and technologies.
• Categorise threat types, sources, and motivations.
• Describe network attacks, such as scanning, spoofing, and Denial of Service.
• Understand social engineering-based attacks.
• Identify different types of malware and malware protection.
• Describe the elements of security policies, standards, procedures. and guidelines.
• Understand how risk and threat assessment and analysis are performed.
• Identify the contents and use of Service Level Agreements.
• Describe the elements of privilege and document management policies.
• Understand the use of Human Resources, privacy and acceptable usage policies.
• Describe the processes of incident response and forensic investigation.
• Understand the use of cryptography to ensure confidentiality, integrity, authentication and non-repudiation.
• Identify and differentiate encryption technologies and uses.
• Explain the use of cryptographic algorithms.
• Identify different types of cryptographic attacks.
• Describe the components and usage of Public Key Infrastructure.
• Know the function and format of X.509 digital certificates
• Describe the function of Certificate Authority, Certificate Practice Statement, Certificate Policy, and Registration Authority in PKI.
• Identify the use of different PKI trust models.
• Describe the process of key management under PKI.
• Identify cryptographic standards associated with PKI.
• Describe the use of zones, barriers, gateways, and surveillance in planning and implementing site security.
• Identify the key features of environmental and fire suppression systems that impact security.
• Know how VLANs and NAT can be used to improve network security.
• Identify security considerations for network infrastructure (cabling, switches, routers, servers, and workstations).
• Know the types and features of network management software and protocols.
• Identify security considerations for removable media.
• Understand the concepts of hardening and security baselines.
• Identify the key security considerations for server and client operating systems.
• Configure or disable services and protocols as required.
• Apply operating system and application software patches.
• Identify the features and vulnerabilities of: Directory access protocols, File and print services, Database applications, DHCP, DNS.
• Describe procedures and products used to survey and test security systems.
• Configure and analyse audit logs for the major network operating systems.
• Describe the types and features of Intrusion Detection Systems.
• Describe the purpose of a honey pot or honey net.
• Describe the use of system scanning (or ethical hacking) to test security systems.
• Describe different types and security considerations of wireless access methods.
• Configure WLAN site security.
• Identify the components and security considerations of different remote access media and technologies.
• Identify the features and vulnerabilities of remote connection protocols including (PPTP, L2TP, IPsec, and SSH).
• Describe different VPN technologies.
• Identify the features of different remote authentication products and protocols, including RADIUS, TACACS, CHAP, EAP, and 802.1X.
• Harden remote access services and clients.
• Describe the features and security considerations of email protocols and products.
• Describe the products used to secure email communication confidentiality.
• Identify key products and vulnerabilities of: Instant messaging, VoIP, NNTP, FTP, Remote Administration.
• Describe how SSL/TLS is used to secure HTTP communications.
• Harden web servers and applications.
• Harden web browser software and usage.
• Develop effective disaster recovery and business continuity plans.
• Understand the importance of fault tolerance.
• Identify the main components that require redundancy.
• Understand the use and configuration of clusters.
• Describe the backup strategies and technologies.

   

Materials Issued

Course Manual

Topics

• General Security Concepts
• Know your enemy
• Infrastructure and connectivity
• Monitoring communications activity
• Implementing & maintaining a secure network
• Working with a secure network
• Cryptography basics and methods
• Cryptography standards
• Security policies and procedures
• Security management

S629 08/08

Send an Enquiry Print Friendly Training Facility

To make an enquiry please click the dates below to send us your details.

Please note: all prices quoted exclude VAT, which will be charged at the current UK rate.
Please note that exchange rate fluctuations will be taken into account.