Course Outline

An Overview of Security Threats and Controls

• Describe Security Threats
• Understand the need of IT Security
• Security implementation
• Identify, authenticate and authorize requirement in an organization
• Define attacks
• Types of attacks
• Define Mitigation and recognition of attacks
• Identifying Assessment tools and methods

An Introduction to Cryptography and Access Control

• An Introduction to Cryptography
• Cryptography usage
• Recognising Hash Functions
• Distinguish between Symmetric and Asymmetric Encryption
• Classifying Steganography
• understanding Public Key Infrastructure (PKI)
• The Operation of PKI
• Generating keys
• Expending and handling keys
• Using Key Recovery Agents and Cancelations
• Using password authentication
• Define PAP and CHAP
• Protecting passwords
• How be verification safe?
• Authentication types
• Define RADIUS and TACACS+
• Account Management
• What are directory Services?
• Managing user and group accounts
• Describe Privilege Policies

An Introduction to Network Security

• A Summary of network topologies
• Demilitarized Regions Investigation
• How routers and Network Address Translation are used?
• An Overview of Security Appliances and Applications
• Types of firewalls
• The summary of Switches
• An overview of Intrusion Detection Systems and Wireless Network Security
• Using wireless LANs and wireless authentication
• Analysis of WEP and WPA
• An introduction to VPN and Remote Access Security
• Understanding Virtual Private Networks and IPsec
• An overview of Network Application Security
• An overview of DHCP, DNS, and SNMP Security
• Difference between IPv4 and IPv6

Host, Data, and Application Security

• What is Host security?
• What is OS hardening?
• Managing Patch
• What is Network Access Control?
• Define Data Security
• Need of Data encryption and Handling
• An overview of Data Loss Prevention and Data Wiping
• Using Web Services Security
• Analysis of SSL and TLS
• Concept of Web Servers and Load Balancers
• An Introduction to Web Application Security
• The databases of Web Application
• Explain Exploits
• Concept of Virtualization and its approaches
• What is Cloud Security?
• Using cloud computing
• The risks involved in cloud computing

Operational Security

• What is Site Layout and Access?
• An overview of Gateways and Locks
• The concept of hardware security
• The need of Environmental Control
• An Introduction to Mobile and Embedded Device Security
• What is BYOD model?
• Defining Mobile Device Security and Mobile Device Management
• An overview of risk management
• Executing risk calculation and mitigation
• Handling configurations
• Planning of Disaster Recovery
• Formation of Clusters
• An Introduction to Incident Responses procedure