CERT^® Program Course:

Information Security for Technical Staff

Date and Local

This course will be delivered in São Paulo–SP - Brazil - on August 23–27, 2010.

Important: Participants need to bring their own laptop in order to perform the hands-on sessions.

Price

2010 fee, per person:

Industry and professionals:	R$ 2.600,00
Academic and Research Institutions:	R$ 2.600,00

Important: Participants need to bring their own laptop in order to perform the hands-on sessions.

Obtaining the Certificate

The certificates of the CERT^® Program courses delivered by CERT.br have the same validity of those issued directly by Carnegie Mellon^® University.

The certificates of the courses delivered by CERT.br will be issued to those who obtain at least 90% of presence.

The course participants will also be entitled to earn CEUs issued by Carnegie Mellon^® University.

Course Description

This five-day course is designed to provide participants with practical techniques for protecting the security of an organization's information assets and resources, beginning with concepts and proceeding on to technical implementations.

The courses focus on understanding and applying the concept of survivability through the effective management of risk, threats, policy, system configuration, availability, and personnel. The course also addresses incident response and provides a technical foundation for working with TCP/IP security and cryptography. The final section of the course helps participants learn to design a secure network architecture managing host systems, securing network services and infrastructure, working with firewalls, and understanding intrusion detection and prevention.

The principles, strategies, and practices covered are applicable to most system platforms and network environments. To illustrate important concepts and security technologies, demonstrations and exercises will include implementations applicable to Linux and Windows systems as well as some Internetworking equipment.

The course involves extensive hands-on laboratories utilizing a network environment, scenario-based exercises, lecture/briefings, and open discussion to help participants develop their understanding of the problems and strategies for securing information systems and networks.

Hands-on labs and demonstrations include subjects such as: Scanning and enumeration; Enigmail and Mozilla Thunderbird email client use of the OpenPGP standard; securing remote access with IPSec; assessing networks with Nessus; intrusion detection and prevention with Snort; as well as information on personal and enterprise firewalls and extensive hardening of systems and networks. Each student will have to bring a laptop for the duration of the course.

The course Information Security for Technical Staff is part of the curriculum for the CERT^® Certified Computer Security Incident Handler program.

Objectives

This course will help participants to:

• describe the components and the concept of survivability
• identify and define the components of an information security (IS) model
• describe the components of risk and asset management as applied to networked systems
• identify the benefits of invoking sound security policies and methods for implementing them
• describe the steps of the Security Knowledge in Practice(SKiP) methodology
• summarize key security concerns of the TCP/IP protocol suite
• describe the benefits of cryptography when applied to IS properties of confidentiality, integrity, and availability
• describe common methods of gathering information on networked systems
• describe the types of current vulnerabilities and threats to which an organization's information assets may be exposed
• identify common attack methods perpetrated against network systems
• describe best practices for hardening and actively defending host and networked systems from intrusions
• develop an approach for staying current with trends and requisite skills in information security

Topics

• the challenge of survivability
• asset and risk management
• policy formulation and implementation
• Security Knowledge in Practice
• TCP/IP security
• cryptography
• information gathering
• threats, vulnerabilities, and attacks
• host system hardening
• securing network infrastructure
• deploying firewalls
• securing remote access
• intrusion detection systems

Audience

• two years of practical experience with networked systems or equivalent training/education
• some degree of specific familiarity with the ISO/OSI 7-layered reference model as well as Ethernet, TCP/IP, and major network operating systems such as Unix and Windows NT/2000/XP

Prerequisites

There are no prerequisites for this course.

Course Material

Participants will receive a course notebook containing the course materials, including class handouts and additional documentation.

Participants need to bring their own laptop in order to perform the hands-on sessions.

(SM) SEI is a service mark of Carnegie Mellon University.

® CERT and Carnegie Mellon are registered in the U.S. Patent and Trademark Office by Carnegie Mellon University.