Security Courses > Security for IT Practitioners Training Course

This course offers practical training in areas such as TCP/IP, types of attack, applied cryptography, multi-firewalls and intrusion detection systems, Internet and operating system security. The course helps individuals to move into the Internet security arena or to simply gain a broader working knowledge in the field of Information and Internet security, enabling delegates to plan a security policy and implement the latest security related technologies.

Delegates should have an awareness of the concepts of Internet security and some hands-on experience with computers and networks.

Topics covered on the 5 day Security for IT Practitioners course

Introduction to Security

• Security Basics
• Industry Security Standards
• Security Policies
• User Authentication
• Encryption
• Access Controls
• Audit and Administration

TCP/IP for Security

• Introduction to TCP/IP
• TCP/IP Architecture
• LANs
• IP and ICMP Services
• IP and Routing
• Domain Name Service
• Transport Services

Applied Cryptography

• Encryption and Trust Relationships
• Symmetric Key Encryption
• Asymmetric Key Encryption
• Hashing Algorithms
• Digital Certificates
• PKI Infrastructure

Virtual Private Networks

• VPN Benefits
• PPP with PAP and CHAP
• Tunnelling Protocols
• Virtual Private Dial-up Networks
• IPSec
• Internet Key Exchange (IKE)

Types of Attack

• Introduction
• Spoofing or Masquerade
• Man-in-the-Middle
• Denial of Service
• Insider
• Bug Based
• Key Logging
• Brute Force
• Trojans, Viruses and Worms

Firewall Roles and Types

• Introduction
• Packet Filters
• Stateful Packet Filters
• Circuit Level Gateways
• Application Proxies
• Other Firewall Issues

Firewall Design Topology and Management

• Firewall Design Principles
• Common Firewall Topologies
• ICMP and Firewalls
• Firewall Management
• Configuring the Perimeter Router

World Wide Web Security

• Introduction
• Web Technologies
• Browser Privacy
• Cookies
• Mobile Code Threats
• Web Server Security
• Web Traffic Security

Intrusion Detection Systems

• Introduction
• Methodologies
• Methods
• Concerns

Operating system security

• Introduction
• Windows Components
• Linux Components
• Account Security

The Auditing Process

• Introduction
• Ethical Hacking Auditing
• The Discovery Phase
• The Penetration Phase
• Controlling and Covering Tracks
• Auditing and Log Analysis
• Windows Log Analysis
• Linux Logging
• Making Recommendations and Generating Reports

   (excl.VAT)