Concentrika poppy

About us

 

About the course

The internet is a highly functional but potentially very insecure means of enacting or controlling a business. It represents very low costs of network ownership but exposes your company to the accumulated risks of a vast number of unknown connecting machines and persons, over whom you have no control. The course aims to show you how data moves across networks, what the main risks are and how firewall technology can mitigate these risks.

Anyone who needs to know and understand the workings of firewall technology, from a security or audit standpoint, must attend this course. The IT technical components will be explained to you, so you will understand how the various elements work together.

You will find some of the components of internetworking in the lab and will have a chance to examine it first hand – PKI software, a web site, CGI programs, a firewall and much more.
We will show you how to abuse victim systems and how firewalling can reduce these threats.

The training lab is supplied with SonicWall and CISCO PIX firewalls, for you to investigate hands-on. A range of intruder tools are available for you to experiment with.

Prerequisites

Delegates should have a reasonable knowledge of IT in general. You should feel comfortable investigating system settings through a Windows GUI interface, as well as entering line commands in console environments. Some investigations may be carried out on a UNIX platform. The course has technical content, but this is technically in breadth, rather than depth.

Audience

If you come from one of these business areas, you would find the course very useful:

  • An IT systems implementer wishing to protect vulnerable systems
  • An IT manager wishing to understand why the purchase of firewalling is necessary and what is involved
  • A senior user or system owner wishing to understand ways of mitigating risk
  • An network analyst looking to understand options for firewall protection
  • Computer auditors and computer audit planners
  • Computer security specialists
  • Business risk analysts
  • Legal experts who need to understand how e-commerce works and how the components are connected together

Duration:

2 days

1. Introduction

What are we protecting ourselves against?
Which persons are the threat?
What do we have that anyone would wish to violate?

4. Introducing encryption

Business objectives
Types of encryption
Virtual private networks

Appendices

Appendix 1 Checkpoint firewall audit
Appendix 2 Firewall audit (general)

2. Communications protocols used on the internet

TCP/IP mechanism
Ports and services
Network services
Intruder techniques
Port scanning and detection
TCP/IP based threats

5. Traffic control

Firewalls
Firewall services
Rules lists and logs
Cisco PIX firewall
SonicWall firewall
Microsoft ISA firewall
Proxy servers
E-mail filtering
  

3. Harvesting information

What intruders are looking for
Tools of the trade
Attack signatures

 

6. System security checks

Top 20 IT-based vulnerabilities

  

 

 

 
Courses
schedule
Contact us