Overview

You will learn the following in this course
  1. How to build a comprehensive security program focused on preventing, detecting, and responding to attacks
  2. Core components of building a defensible network infrastructure and how to properly secure routers, switches, and network infrastructure
  3. Methods to detect advanced attacks on systems that are currently compromised
  4. Formal methods for performing a penetration test to find weaknesses in an organization's security apparatus
  5. How to respond to an incident using the six-step process of incident response: Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned
  6. Approaches to analyzing malware, ranging from fully automated analysis to static properties analysis, behavioral analysis, and code analysis

Learning Outcome

The course will cover the following
  • Identify network security threats against infrastructure and build defensible networks that minimize the impact of attacks
  • Access tools that can be used to analyze a network to prevent attacks and detect the adversary
  • Decode and analyze packets using various tools to identify anomalies and improve network defenses
  • Understand how the adversary compromises systems and how to respond to attacks
  • Perform penetration testing against an organization to determine vulnerabilities and points of compromise
  • Apply the six-step incident handling process
  • Use various tools to identify and remediate malware across your organization
  • Create a data classification program and deploy data-loss-prevention solutions at both a host and network level

Who should Attend?

  • Incident responders and penetration testers
  • Security Operations Center engineers and analysts
  • Network security professionals
  • Anyone who seeks technical in-depth knowledge about implementing comprehensive security solutions

Eligibility Criteria

  • Detailed understanding of networks, protocols, and operating systems.
This course is endorsed under Critical Infocomm Technology Resource Programme Plus (CITREP+) Programme.
To find out more about CITREP+ Funding, please refer to Programme Support under CITREP+ page


Information is accurate as of 11 August 2020