Network Security Administrator

#text-block-10 { margin-bottom:0px; text-align:left; }

Module 01: Fundamentals of Computer Network
* Key elements of network
* Logical Elements of Network
* Types of network media
* Automated Information Systems (AIS)
* Critical information characteristics
* Information states
* Operations Security (OPSEC)
* Object reuse(computer security)
* OSI Model
* Transmission Modes
* Types of Transmission
* Logical Network Classification
* Network Topologies
* Physical Network Classification
* Network Equipments

Module 02: Network Protocols
* Introduction to protocols
* Implementing Network protocols
* Application Layer Protocols
* Presentation Layer Protocol
* Session Layer Protocol
* Transport Layer Protocols
* Network Layer Protocols
* Data link Layer Protocol

Module 03: Protocol Analysis
* Overview of tcp/ip
* Relation to other Protocol
* Tcp/ip Protocol suite
* Windowing
* Sliding Window
* Acknowledgement
* TCP
* IP

Module 04: Hardening Physical Security
* Need for physical security
* Security Statistics
* Physical Security Breach Incidents
* Factors Affecting Physical Security
* Physical Security Threats
* Premises Security
* EPS (Electronic Physical Security)
* Challenges in Ensuring Physical Security
* Mantrap
* Physical Security Checklist
Module 05: Network Security
* Overview of Network Security
* The need for network security
* The goals of network security
* Security awareness
* Functions of Network security administrator
* Communication Security (COMSEC)
* Functions of INFOSEC Officer
* Functions of information resources management staff
* program or functional managers
* security office
* senior management
* system manager and system staff
* telecommunications office and staff
* Functions of audit office
* Functions of OPSEC managers
* Role of end users
* Network Security at:
* Transmission Security
* Legal Elements
* Countermeasures: cover and deception
* Reporting security violations

Module 06: Security Standards Organizations
* Internet Corporation for Assigned Names and Numbers (ICANN)
* International Organization for Standardization (ISO)
* Consultative Committee For Telephone and Telegraphy (CCITT)
* International Telecommunication Union (ITU)
* American National Standards Institute(ANSI)
* Institute Of Electronics and Electrical Engineers(IEEE)
* Electronic Industries Association
* National Center for Standards and Certification Information (NIST)
* World Wide Web Consortium (W3C)
* Web Application Security Consortium (WASC)

Module 07: Security Standards
* Introduction to Internet Standards
* Standards Creation Committee
* Internet Standards
* Cabling Standards
* Specification Standards
Module 08: Security Policy
* Security Policy overview
* Concept of Security Policy
* Key Security Elements
* Security Awareness Programs
* Vital role of a security policy
* Classification of Security policy
* Contents of Security Policy
* Privacy and Confidentiality
* Security levels
* Agency Specific AIS and Telecommunications Policies
* Configuration of security policy
* National Policy and Guidance
* Implementation of security policy
* Incident Handling and Escalation Procedures
* Security operations and life cycle management
* Defining Responses to Security Violations
* Presenting and Reviewing the Process
* Compliance with Law and Policy
* Transborder encryption issues
* Points To Remember While Writing Security Policy
* Issue-specific Security Policy (ISSP)
* Creating and Managing ISSPs

Module 09: IEEE Standards
* Introduction to IEEE standards
* IEEE LAN Protocol Specification
* Wireless Networking Standards

Module 10: Network Security Threats
* Current Statistics
* Types of Attackers
* Classification of Hackers
* Techniques
* Common Vulnerabilities and Exposures (CVE)
* Attacks
* Hiding Evidence of an Attack
* Problems Detecting Network Attacks
* Network Scanning Tools:

Module 11: Intrusion Detection System (IDS) and Intrusion Prevention Systems (IPS)
* Introduction to IDS
* History of Intrusion Detection
* Intrusion Detection Concepts
* IDS for an Organization
* Characteristics of IDS
* Aggregate Analysis with IDS
* Types of IDS
* Deployment of IDS
* Types of Signatures
* True/False-Positive/Negative
* Major Methods of Operation
* IDS Tool
* Intrusion Prevention System
* Information Flow in IDS and IPS
* IPS Tool
* IDS vs. IPS
* Intrusion Detection Checklist

Module 12: Firewalls
* Firewalls: Introduction
* Security features
* Multiple components of Firewall
* Firewall Operations
* Software Firewall
* Hardware Firewall
* Types of Firewalls
* Firewall Features
* Establishing Rules and Restrictions for your Firewall
* Firewall Configuration Strategies
* Scalability
* Firewall Architecture
* Handling threats and security tasks
* Protection against hacking
* Centralization and Documentation
* Multi-layer firewall protection
* Firewall deployment strategies
* Specialty firewalls and Reverse firewalls
* Advantages of using Firewalls
* Disadvantages of using Firewalls
* Threats
* Limitations of Firewalls
* Personal Firewall Software
* Personal Firewall Hardware
* Firewall Log Analysis
* Firewall Tools
* Comparison of Various Firewall Products
* T-REX Open Source Firewall
* SQUID
* WinGate
* Symantec Enterprise Firewall
* Firewall Testers

Module 13: Packet Filtering and Proxy Servers
* Application layer gateway
* Proxy servers

#text-block-11 { margin-bottom:0px; text-align:left; }

Module 14: Bastion Host and Honeypots
* Bastion Hosts
* Honeypot
* Honeynet

Module 15: Securing Modems
* Introduction to Modems
* Origin of Modems
* Modem Features
* Types of Modems
* Modem Security
* Categorizing Modem Access
* Modem Attacks
* Modem Risks
* Modem Failure Symptoms
* Troubleshooting Modems

Module 16: Troubleshooting Network
* Introduction to troubleshooting
* A Troubleshooting Methodology
* Troubleshooting Network devices
* Troubleshooting Network Slowdowns
* Troubleshooting Wireless devices
* Troubleshooting Methodology
* TCP/IP Troubleshooting Utilities

Module 17: Hardening Routers
* Introduction to Routers
* Routing Metrics
* Multiple Routing
* Types of Routers
* Routing Algorithms
* Internet work Operating Systems (IOS)
* IOS: FEATURES
* Routing Principles
* Modes Of Operation
* IP Routing
* IP Source Routing
* Configuration of Routers
* Router Configuration Modes
* Finger Tool
* Disabling the auxiliary and closing extra interfaces
* BOOTp service
* TCP and UDP small servers
* Disabling Proxy ARP
* Disabling SNMP
* Disabling NTP
* Hardening a Router
* Cisco Discovery Protocol
* Filtering Network Traffic
* Access Control List
* Log System Error Messages
* Securing Routers: Committed Access Rate
* Securing Routers: Secure Shell
* Router Commands
* Types of Routing
* Routing Protocols
* Routing Table Maintenance Protocol (RTMP)
* Troubleshooting a router
* Components of router security
* Router security: testing tools

Module 18: Hardening Operating Systems
* BIOS security
* Windows Registry
* Configuring Windows Services
* Resource Access
* Discretionary Access Control List (DACL)
* Objects And Permissions
* Rights Vs Permissions
* NTFS File System Permissions
* Encryption File System
* Windows Network Security
* Modes of Operation (Describes the security conditions under which the system actually functions)
* AIS
* Windows infrastructure features
* Kerberos Authentication And Domain Security
* Trust Relationships Between Domains
* IP Security
* Windows Security Tools
* Windows
* Windows Certificate Authorities
* Certificate Authority Requirements
* Desktop Management
* File Management
* Linux
* Pluggable Authentication Module
* Network Information Services
* Group Management Utilities
* Permission Management Tools
* System Logger Utility
* Unix Security
* Macintosh Security
* Vista security

Module 19: Patch Management
* Introduction
* The Patch Concept
* Patch testing
* Patch Monitoring and Management
* Consolidating Patches on Red hat Network
* Red Hat Up2date Patch Management Utility Installation Steps
* Red Hat Up2date Patch Management: Command Line Interface
* Reporting
* Patch Management Process
* Windows Update Services
* Microsoft Patch Management Tool: Microsoft Baseline Security Analyzer
* Patch Management Tool

Module 20: Log Analysis
* Introduction to Log Analysis
* Overview of log analysis
* Audit Events
* Log Files
* Limitations of log files
* Monitoring for Intrusion and Security Event
* Log Analysis Tools
* How to Secure Logs(Log Security)
* Inc setting up of Servers: IIS & Apache

Module 21: Application Security
* Importance of Application Security
* Why Is Web Security So Difficult?
* Application Threats and Counter Measures
* Application dependent guidance
* Web Applications
* System Life Cycle Management
* Telecommunications Systems
* Securing voice communications
* Securing data communications
* Securing of keying material
* Transmission security countermeasures (e.g., callsigns, frequency, and pattern forewarning protection)
* Embedded Application Security (EMBASSY)
* Secure Coding
* Threat modeling

Module 22: Web Security
* Overview of Web Security
* Common Threats on Web
* Identifying Unauthorized Devices
* Restrictive Access
* Network Addresses
* Tracking the Connectivity: Tracert/Traceroute
* Testing the Traffic Filtering Devices
* IIS Server
* Client Authorization
* Client-Side Data
* Server-side data
* Client Authentication
* Input Data Validation
* Browsing Analysis
* Browser Security
* Plug-ins
* Common Gateway Interface(CGI)

Module 23: E-mail Security
* Overview of E-mail
* History of E-mail
* Basics of E-Mail
* Types of E-Mail
* Web Based Versus POP3 E-mail
* Components of an Email
* E-Mail Servers
* E-Mail Encryption
* Installing WorkgroupMail
* Configuring Outlook Express
* Secure Email
* E-mail Authentication
* E-mail protocols
* Client and server architecture
* E-Mail Security Risks
* How to defend against E-Mail security risks
* Tools for Email Security
* Tracking e-mails
Module 24: Authentication: Encryption, Cryptography and Digital Signatures
* Authentication
* VeriSign Authentication
* Encryption
* Cryptography
* Digital Certificates
* Certificate Encryption Process
* Public and Private Keys
* Digital Signatures
* key management protocols (bundling, electronic key, over-the-air rekeying)
Module 25: Virtual Private Networks and Remote Networking
* Introduction to Virtual Private Network
* Types of VPN
* Tunneling
* Point to point Tunneling Protocol(PPTP)
* Layer 2 Tunnel Protocol
* VPN Security
* Connection to VPN
* Step 1: Setting Up VPN
* Step 2: Implement DHCP Services
* Step 3: Create An Enterprise Certificate Authority
* Step 4: Install IAS
* Step 5: Configure IAS
* Step 6: Create A Remote Access Policy
* Step 7: Configure The VPN Server
* Step 8: Associate The VPN Server With The DHCP Server
* Step 9: Configure Remote Clients
* Step 10: Test The Client Connection
* VPN Policies
* VPN Registrations And Passwords
* Risk Associated With VPN
* Pre Implementation Review – Auditing
* Implementation Review – Auditing
* Post Implementation Review And Reporting
* VPN Product Testing
* Common VPN Flaws
Module 26: Wireless Network Security
* Introduction to Wireless
* Types of Wireless Networks
* Components of Wireless Network
* Wireless Technologies
* Wireless Communications: Examples
* Devices using Wireless Communications
* Service Set IDentifier (SSID)
* Detecting Wireless Network
* Types of Wireless Attacks
* Wireless Threats
* Overview of Wi-Fi
* Open Wi-Fi Vulnerabilities
* WLANs in Public Space
* Wired Equivalent Privacy
* WAP
* Wireless Network Attack Tool: AirSnarf
* Tools to detect MAC Address Spoofing: Wellenreiter v2
* WLAN Management
* Wireless Security
* Wireless Auditing
* DHCP Services
* Mobile Security Through Certificates
* Certificate Management Through PKI
* Troubleshooting Wireless Network
* Wireless Network Security Checklist

Module 27: Creating Fault Tolerance
* Network Security: Fault Tolerance
* Why Create Fault Tolerance
* Network Security
* Reasons for Network Failure
* Reasons For System Failure
* Preventive Measures

Module 28: Incident Response
* What is an Incident
* Category of Incident
* Types of Incident
* Step by Step Procedure
* What Is an Incident Response
* Six Step Approach for Incident Handling (PICERF Methodology)
* Incident Response Team
* Obstacles in Building a Successful Incident Response Team
* Computer Security Incident Response Team

Module 29: Disaster Recovery and Planning
* Overview of Disaster and its types
* What is a Disaster Recovery
* Principles of Disaster Recovery
* Types of Disaster Recovery Systems
* Backup Site
* Recovery of Small and Large Computer Systems
* Emergency Management
* Disaster Recovery Planning
* Security Planning
* Process of Disaster Recovery Plan
* Disaster Recovery Testing
* Contingency Planning/Disaster Recovery
* contingency plan components, agency response procedures and continuity of operations
* team member responsibilities in responding to an emergency situation
* guidelines for determining critical and essential workload
* determination of backup requirements
* development of procedures for off-site processing
* development of plans for recovery actions after a disruptive event
* emergency destruction procedures
* Disaster Recovery Planning Team
* Business Process Inventory
* Risk Analysis
* Risk Management
* Business Continuity Planning Process
* Emergency destruction procedures
* Six myths about Business Continuity Management and Disaster Recovery
* Disaster Prevention

Module 30: Network Vulnerability Assessment
* Vulnerability Assessment
* Features of a good vulnerability assessment
* Vulnerability classes
* Source Of Vulnerabilities
* Choice of Personnel for Network Vulnerability Assessment
* Network vulnerability Assessment methodology:
* How to assess vulnerability assessment tools
* Selecting vulnerability assessment tools
* BIOS security
* Windows Registry
* Configuring Windows Services
* Resource Access
* Discretionary Access Control List (DACL)
* Objects And Permissions
* Rights Vs Permissions
* NTFS File System Permissions
* Encryption File System
* Windows Network Security
* Modes of Operation (Describes the security conditions under which the system actually functions)
* AIS
* Windows infrastructure features
* Kerberos Authentication And Domain Security
* Trust Relationships Between Domains
* IP Security
* Windows Security Tools
* Windows
* Windows Certificate Authorities
* Certificate Authority Requirements
* Desktop Management
* File Management
* Linux
* Pluggable Authentication Module
* Network Information Services
* Group Management Utilities
* Permission Management Tools
* System Logger Utility
* Unix Security
* Macintosh Security
* Vista security