0845 757 3888 · info@xpertise.co.uk

On-line training course catalogue

Clinic 2804: Microsoft Security Guidance Training IV

Type of course: Classroom

Course details
Fee£395
Days1
Course code MS2804


We currently do not have public dates scheduled for this course.
If you have a requirement for this course, please contact us for the latest course information.

Print this page | Download as Word document |

Overview

This one-day, instructor-led clinic builds on existing knowledge of server and client security and provides students with the knowledge and skills to apply security best practices to assessing and managing risk in an information technology (IT) environment, with a focus on assessing network security. It also provides students with prescriptive guidance to implement server and domain isolation using Group Policy and Internet Protocol Security (IPSec) and to manage multiple identity stores.

This clinic is intended for information technology professionals who are responsible for administering network infrastructures based on Microsoft Windows 2000 or Microsoft Windows Server 2003.

Prerequisites

Before attending this clinic, students must have:

  • Understanding of network security essentials
  • Hands-on experience with Microsoft Windows 2000 or Windows Server 2003
  • Experience with Active Directory and Group Policy
  • Basic understanding of directory and security services used in heterogeneous computing environments.

Delegates will learn how to

  • Implement and maintain processes aimed at identifying and prioritizing risks in your IT environment. This includes:
  • Describing Security Risk Management concepts and how security risk management is designed to help an enterprise establish a process for performing an initial risk assessment, cost benefit analysis, and implementation of countermeasures
  • Implementing a security risk assessment that will create a prioritized list of security risks that need to be addressed
  • Implementing a security risk remediation strategy
  • Implementing an ongoing process to ensure that security risks are addressed on an ongoing basis
  • Describe the planning and preparation required to complete a successful network security assessment. This includes:
  • Describing and implementing a structured approach to planning and performing security assessments
  • Describing how information about a company can be gathered and possibly used in a malicious manner
  • Describing how penetration testing can be used to help identify and evaluate threats and to implement countermeasures to address these threats
  • Describing a scenario in which a company performs a security assessment and penetration test to detect potential security issues
  • Identify the tasks required to use Group Policy and IPSec to implement a network isolation solution. This includes:
  • Understanding basic IPSec concepts and how IPSec can be used to protect data integrity, data origin authentication, and data confidentiality
  • Understanding the basic concepts of network isolation, including how IPSec and network access groups are used within the solution
  • Applying knowledge of network isolation to more advanced and complex isolation scenarios
  • Describe how to implement Microsoft technologies to provide aggregation and synchronization of multiple identity data stores. This includes:
  • Describing the rationale for implementing an identity and access management solution
  • Defining the concepts and scenarios related to identity and access management
  • Identifying the issues related to identity management and how these issues can be resolved using Microsoft technologies
  • Implementing a variety of identity management solutions
  • Identifying the issues related to access management and how these issues can be resolved using Microsoft technologies

Course Outline

Session 1: Security Risk Management

  • Security Risk Management Concepts
  • Identifying Security Risk Management Prerequisites
  • Assessing Risk
  • Conducting Decision Support
  • Implementing Controls and Measuring Program Effectiveness

Session 2: Assessing Network Security

  • Planning Security Assessments
  • Gathering Information About the Organization
  • Penetration Testing for Intrusive Attacks
  • Case Study: Assessing Network Security for Northwind Traders

Session 3: Network Isolation Using Group Policy and IPSec

  • Overview of Internet Protocol Security
  • Understanding Network Isolation Using IPSec
  • Understanding Advanced Network Isolation Scenarios

Session 4: Identity and Access Management

  • Overview of Identity and Access Management Concepts
  • Identity Management
  • Intranet Access Management
  • Extranet Access Management

Xpertise – Clinic 2804: Microsoft Security Guidance Training IV training courses

Xpertise provides Clinic 2804: Microsoft Security Guidance Training IV training courses from 22 UK locations: in Aberdeen Scotland, Altrincham Manchester, Birmingham West Midlands, Bristol South West, Edinburgh Scotland, Glasgow Scotland, Hinckley East Midlands, Leeds Yorkshire, Leeds Yorkshire (Ring Road), London King William Street, London Middlesex Street, London Rosebery Avenue, London Tabernacle Street, Maidenhead Berkshire, Malmesbury Wiltshire, Manchester (Exchange Quay), Milton Keynes Buckinghamshire, Newcastle Tyne and Wear, Reading Berkshire, Stockport Manchester, Swindon Wiltshire and Washington Tyne and Wear – and at 44 partner locations nationwide.


Xpertise Training reserves the right to improve the specification and format of its courses for the benefit of its customers without notice to the customer.