Tools and Techniques for the Network Security Practitioner

Fred Avolio

Because of the tremendous growth of the Internet, network and computer security is now recognized as essential. With the increase in use, and the changes in technology, inevitably come new threats, vulnerabilities, and increased risk. The paradigms for security that were established a few short years ago must metamorphose in order to meet the challenges of these changes. No longer is antivirus software on every desktop and a single firewall on a gateway sufficient. Further, we need to move from defensive solutions, to enabling solutions.

This course will survey what lies beyond firewalls. We are in “the next generation” of Internet use, and must start today rolling out additional mechanisms and employing added methods. We will also discuss the growing trends in security which lead to insecurity.

In this course you will learn:

• The challenges of internetwork security.
• Defensive and offensive methods and mechanisms including
• Multiple firewall deployment
• VPNs — types and deployment, site-to-site and user-to-site
• Containing Wireless
• Intrusion detection systems — types, strengths, weaknesses, and use
• Protecting the road warrior
• The worst Internet threats and how to counter them.
• The 10 security anagement errors that lead to vulnerabilities and how to avoid them
• Tools to use to test and verify systems

You will leave with:

• The good, the bad, and the ugly in technology solutions
• White papers on security technologies and types of products
• Contact information for keeping up with security advisories and vendor patches
• Pointers to free and commercial solutions to security
• Directory of security sites, servers, and mailing lists

Upon completion of the course, participants will have a good working understanding of cryptography and its use in network defense, intrusion detection system use, and techniques for securing the telecommuter and traveler. The participant will be able to evaluate advanced tools and plan their deployment and use.

The main goal of this class is to bring participants to the “next level” of internetwork and computer security, beyond antivirus software and firewalls.

Course Outline

• Network Vulnerabilities
• Mitigating Risk
• Defend in Breadth (Synergy)
• Firewalls
• IDS and VAT
• Worst Security Threats
• Cryptography
• PKI Considerations
• Classification
• Securing the Road Warrior and the Teleworker
• System Hardening
• Top 10 Security Admin Errors

Who Should Attend?

This course is for network managers, system administrators, and security managers who already know the basics. The main goal of this class is to bring participants to the “next level” of internetwork and computer security, beyond antivirus software and firewalls. It is not for the security practitioner already well-versed in the course tops.