Microsoft Security Guidance Training I

Target Audience
This clinic provides students with introductory knowledge and skills essential for the design and implementation of a more secure computing environment.

Pre-Requisites
Before attending this course, students must have the following pre-requisites:· Hands-on experience with Windows 2000 or Windows Server 2003 management tools.· Experience with Active Directory and Group Policy.

Purpose
After completing this course, students will be able to establish the business case for security; apply the Security Risk Management Discipline (SRMD); use multiple layers of defense; respond effectively to security incidents; implement best practices; discuss the 10 immutable laws of security; understand the processes to respond to system attacks, and how to apply a successful patch strategy; use patch management tools and processes; understand the importance of server security; understand the core server security principles; use Active Directory structure and Group Policy; apply the Windows Server 2003 Security Guide templates; manage domain controller policy settings; harden servers for specific roles; harden stand-alone servers; understand the requirements for client computer security; understand new security features included in Windows XP SP2; understand antivirus strategies; understand client firewall technologies; apply the Windows XP Security Guide security templates; apply best practices for application security; use Software Restriction Policy; use local Group Policy settings to increase security for stand-alone clients.

Course outline

1. Essentials of Security
2. Implementing Security Patch Management
3. Implementing Server Security on Windows 2000 and Windows Server 2003
4. Implementing Client Security on Windows 2000 and Windows XP

Module 1:Essentials of Security

• This session provides information essential for the design and implementation of a more secure computing environment. The session covers important security concepts and discusses the need for establishing a process for security within an organization. Also included is an overview of Windows XP SP2 security features.

• Business Case.
  
• Security Risk Management Discipline.
  
• Defense in Depth.
  
• Security Incident Response.
  
• Best Practices.
  
• 10 Immutable Laws of Security.
  

Module 2:Implementing Security Patch Management

• This session provides security best practices and available tools and technologies to implement a patch management process and strategy within an organization. The session covers the patch management lifecycle and demonstrates how tools such as Microsoft Baseline Security Analyzer and Software Update Services can be used to quickly and effectively respond to published security bulletins and establish patch compliance across an infrastructure.

• Patch Management Overview.
  
• Patch Management Process.
  
• Patch Management Tools.
  
• Future Road Map.
  

Module 3:Implementing Server Security on Windows 2000 and Windows Server 2003

• This session provides prescriptive host hardening guidance for increasing security on servers used in legacy, enterprise client, and high-security environments. The session discusses configuring the domain infrastructure through Active Directory and applying security templates to establish security baselines for domain controllers and member servers operating in various roles.

• Introduction to Securing Servers.
  
• Core Server Security.
  
• Active Directory Security.
  
• Hardening Member Servers.
  
• Hardening Domain Controllers.
  
• Hardening Servers for Specific Roles.
  
• Hardening Stand-Alone Servers.
  

Module 4:Implementing Client Security on Windows 2000 and Windows XP

• This session describes the requirements for increasing security on client computers in environments where Windows Server 2003, Windows 2000, and Windows NT 4.0 servers are present. The session covers the use of Group Policy and Administrative Templates to secure Windows 2000 and Microsoft Windows XP installations and provides guidance on software restriction policies, antivirus strategies, and firewall technologies. This session also introduces the new security features available in Windows XP SP2 and discusses configuring Microsoft Office and Microsoft Internet Explorer to improve client application security.

• Introduction to Securing Clients.
  
• Core Client Security.
  
• Antivirus Software.
  
• Client Firewalls.
  
• Securing Clients with Active Directory.
  
• Using Group Policy to Secure Clients.
  
• Securing Applications.
  
• Software Restriction Policy.
  
• Local Group Policy Settings for Stand-Alone Clients.