Note:

This class is currently full. If you would like to be added to a wait list, please contact Gail Patterson at 360-816-1450 or gail@nwppa.org.

Who Should Attend:

Network, server, desktop, and security administrators; and management-level individuals interested in this topic.

Course Overview:

This four-day event is a hands-on security course that delivers proven, field-tested solutions for hardening, monitoring, and protecting Microsoft Windows-based networks.

Students will learn in an environment that resembles a real-world network consisting of Windows 2008/2012 servers, Windows 7 & 10, Exchange, SQL server, ISA server, IIS server, and more. They will learn effective countermeasures to defend against modern attack tools and techniques. Upon completion of the course, they will be able to develop hardened, chaos-tolerant networks that are resistant to present and future threats.

Students will install and configure a host and network intrusion detection system utilizing Syslog, Snort, and Windows Events. They will also be able to export the configuration files for easy deployment in to their own networks. 

Topics to be covered include:

• Review of common exploitation techniques
• Information gathering and prevention
• Active directory group policies
• User account and password management
• Authentication mechanisms
• Auditing
• Event logs
• Vulnerability scanning tools and procedures
• Log monitoring and alerting
• Host-intrusion detection
• Network-intrusion detection
• Securing services and service accounts
• Host firewall configuration
• Network traffic analysis
• Proxy server
• File system security
• Patch management solutions
• Software restriction policy
• Software deployment through group policy

A final lab will test the student’s ability to:

• Deploy host and network intrusion detection in a virtual windows network (Snort, Syslog, Windows events)
• Run automated attacks and identify the source, destination, and type of attack
• Harden a virtual Windows network
• Run automated attacks to test windows hardening

The International Information Systems Security Certification Consortium, Inc. accepts Digital Boundary Group’s Security Training Program as credit toward meeting the Continuing Professional Education requirements to maintain the Certified Information Systems Security Professional (CISSP) designation. CISSP constituents will earn 32 CPE credits.

Course Instructor:

Paul Weatherhead, Digital Boundary Group

Course Schedule:

Registration will begin at 8 a.m.; the class will run from 8:30 a.m. to 4:30 p.m. each day. Lunch and refreshment breaks will be provided every day.

Course Location:

Course Location:

Suggested Hotels:

No rooms have been blocked for this meeting. Please call the hotel or go online to get the best available rate for sleeping rooms.  

No rooms have been blocked for this meeting. Please call the hotel and mention NWPPA to receive our corporate rate. 

Course Fees: