Information Security Training

Course 468

  • Duration: 4 days
  • Labs: Yes
  • Language: English
  • 32 (ISC)2 CPE A Credits
  • Level: Foundation

In this Information Security Training course, you will gain the foundational knowledge and skills to analyse and assess network risks and then select and deploy appropriate countermeasures.

Information Security Training Delivery Methods

  • In-Person

  • Online

Information Security Training Information

Through multiple hands-on exercises, you will:

  • Evaluate methods for strong authentication.
  • Search for possible vulnerabilities in operating systems.
  •  Reduce your organisation’s' exposure to dangers in enterprise-wide and virtual private networks (VPNs).
  • Analyse your exposure to security threats.
  • Protect your organisation's systems and data.
  • Deploy firewalls and data encryption to minimise threats.
  • Assess alternative user and host authentication mechanisms.
  • Manage risks originating from inside the organisation and from the internet.
  • Leverage continued support with after-course one-on-one instructor coaching and computing sandbox.

Prerequisites

None.

Information Security Training Outline

Real threats that impact cybersecurity 

  • Hackers, internal and external
  • Eavesdropping
  • Spoofing
  • Sniffing
  • Trojan horses
  • Viruses
  • Wiretaps

A cyber security policy: the foundation of your protection

  • Defining your information assurance objectives
  • Assessing your exposure

Securing data with symmetric encryption

  • Choosing your algorithm: DES, AES, Rc4, and others
  • Assessing key length and key distribution

Solving key distribution issues with asymmetric encryption

  • Generating keys
  • Encrypting with RSA
  • Explore PGP and GnuPG
  • Evaluating Web of Trust and PKI

Ensuring integrity with hashes

  • Hashing with Md5 and SHA
  • Protecting data in transit
  • Building the digital signature

Assessing traditional static password schemes

  • Creating a strong password policy to prevent password guessing and cracking
  • Protecting against social engineering attacks
  • Encrypting passwords to mitigate the impact of password sniffing

Evaluating strong authentication methods

  • Preventing password replay using one-time and tokenised passwords
  • Employing biometrics as part of multi-factor authentication

Authenticating hosts

  • Distrusting IP (Internet Protocol) addresses
  • Mitigating address-spoofing issues and implementing countermeasures
  • Implementing solutions for wireless networks

Discovering system vulnerabilities

  • Searching for operating system vulnerabilities
  • Discovering file permission issues
  • Limiting access via physical security

Encrypting files for confidentiality

  • Encrypting with application-specific tools
  • Recovering encrypted data

Hardening the operating system

  • Locking down user accounts
  • Securing administrator's permissions
  • Protecting against viruses

Scanning for vulnerabilities

  • Searching for rogue servers
  • Profiling systems and services

Reducing Denial of Service (DoS) attacks

  • Securing DNS (Domain Name System)
  • Limiting the impact of common attacks

Deploying firewalls to control network traffic

  • Preventing intrusions with filters
  • Implementing a cyber security policy
  • Deploying personal firewalls

Protecting web services and applications

  • Validating user input
  • Controlling information leakage

Threats from the LAN

  • Sniffing the network
  • Mitigating threats from connected hosts
  • Partitioning the network to prevent data leakage
  • Identifying wireless LAN vulnerabilities

Confidentiality on external connections

  • Ensuring confidentiality with encryption
  • Securing communication with IPsec

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

Information Security Training FAQs

Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.

Yes, this is a foundation course, so you do not need to be an expert to gain significant value from this course. You will gain knowledge and skills in network security that will help you protect your organisation's systems and data.

  • This course provides 23 'A-level' CPE credits towards maintaining your CISSP (Certified Information Systems Security Professional) certification
  • This course covers multiple domains on the ISC2™ CISSP certification exam
  • If you are interested in achieving the CISSP certification, see the CISSP® Training and Certification Prep Course