| Module 01: Network Attacks and Defence Strategies |
- Explain essential terminologies related to network security attacks
|
- Describe the various examples of cloud-specific attack techniques
|
- Describe the various examples of network-level attack techniques
|
- Describe the various examples of wireless network-specific attack technique
|
- Describe the various examples of application-level techniques
|
- Describe Attacker’s Hacking Methodologies and Frameworks
|
- Describe the various example of social engineering attack techniques
|
- Understanding fundamental goal, benefits, and challenges in network defence
|
- Describe the various examples of E-mail attack techniques
|
- Explain Continual/Adaptive Security Strategy
|
- Describe the various examples of mobile device-specific techniques
|
- Explain defence in-depth Security Strategy
|
| Module 02: Administrative Network Security |
- Learn to obtain compliance with regulatory framework and standards
|
- Learn to conduct different type security and awareness training
|
- Discuss various Regulatory Frameworks, Laws, and Acts
|
- Learn to implement other administrative security measures
|
- Learn to design and develop security policies
|
|
| Module 03: Technical Network Security |
- Discuss access control principles, technologies, and models
|
- Discuss various cryptographic algorithms
|
- Redefine the access control in Today’s Distributed and Mobile Computing World
|
- Discuss security benefits of network segmentation techniques
|
- Discuss Identify and Access Management (IAM)
|
- Discuss various essential network security solutions
|
- Discuss cryptographic security techniques
|
- Discuss Essential Network Security Protocols
|
| Module 04: Network Perimeter Security |
- Understand firewall security concerns, capabilities and limitations
|
- Discuss effective deployment of network and host-based IDS
|
- Understand different types of firewall technologies and their usage
|
- Learn how to deal with false positive and false negative IDS/IPS alerts
|
- Understand firewall topologies and their usage
|
- Discuss the considerations for selection of an appropriate IDS/IPS solutions
|
- Select firewalls based on its deep traffic inspection capability
|
- Discuss various NIDS AND HIDS Solutions with their intrusion detection capabilities Snort
|
- Discuss firewall implementation and deployment process
|
- Discuss router and switch security measures, recommendations, and best practices
|
- Discuss recommendations and best practices for secure firewall implementation and deployment
|
- Leverage Zero Trust Model Security using Software-Defined Perimeter (SDP)
|
- Discuss firewall administration concepts
|
- Discuss IDS classification
|
- Understand role, capabilities, limitations, and concerns in IDS deployment
|
- Discuss various components of ID
|
| Module 05: Endpoint Security-Windows Systems |
- Understand Window OS and Security Concerns
|
- Discuss Windows Patch Management
|
- Discuss Windows Security Components
|
- Discuss User Access Management
|
- Discuss Various Windows Security Features
|
- Windows OS Security Hardening Techniques
|
- Discuss Windows Security Baselines Configurations
|
- Discuss Windows Active Directory Security Best Practices
|
- Discuss Windows User Account and Password Management
|
- Discuss Windows Network Services and Protocol Security
|
| Module 06: Endpoint Security-Linux Systems |
- Understand Linux OS and security concerns
|
- Discuss various Linux Security Tools and Frameworks
|
- Discuss Linux Installation and Patching
|
- Discuss Linux User Access and Password Management
|
- Discuss Linux OS Hardening Techniques
|
- Discuss Linux Network Security and Remote Access
|
| Module 07: Endpoint Security-Mobile Device |
- Common Mobile Usage Policies in Enterprise
|
- Discuss and implement general security guidelines and best practices on Mobile platforms
|
- Discuss Security Risk and Guidelines associated with Enterprises mobile usage policies
|
- Discuss Security guidelines and tools for Android devices
|
- Discuss and implement various enterprise-level mobile security management Solutions
|
- Discuss Security guidelines and tools for iOS devices
|
| Module 08: Endpoint Security-IoT Devices |
- Understanding IoT Devices, their need and Application Areas
|
- Discuss IoT Security Tools and Best Practice
|
- Understanding IoT Ecosystem and Communication models
|
- Discuss and refer various standards, Initiatives and Efforts for IoT Security
|
- Understand Security Challenges and risks associated with IoT-enabled environments
|
- Discuss Security Measures for IoT enabled IT Environments
|
- Discuss the security in IoT-enabled environments
|
|
| Module 09: Administrative Application Security |
- Discuss and implement Application Whitelisting and Blacklisting
|
- Discuss and implement Application Patch Management
|
- Discuss and implement application Sandboxing
|
- Discuss and implement Web Applications Firewall (WAF)
|
| Module 10: Data Security |
- Understand data security and its importance
|
- Discuss Data Masking Concepts
|
- Discuss the implementation of data access controls
|
- Discuss data backup and retention
|
- Discuss the implementation of Encryption of Data at rest
|
- Discuss Data Destruction Concepts
|
- Discuss the implementation of Encryption of “Data at transit”
|
- Data Loss Prevention Concepts
|
- Discuss the implementation of Encryption of “Data in transit” between browser and web server
|
- Discuss the implementation of Encryption of “Data in transit” in E-mail delivery
|
- Discuss the implementation of Encryption of “Data in transit” database and web server
|
|
| Module 11: Enterprise Virtual Network Security |
- Discuss the evolution of network and security management concept in modern Virtualized IT Environments
|
- Discuss OS Virtualization Security
|
- Understand Virtualization Essential Concepts
|
- Discuss Security Guidelines Recommendations and Best Practices for Containers
|
- Discuss Network Virtualization (NV) Security
|
- Discuss Security Guidelines, Recommendations and Best practices for Dockers
|
|
|
- Discuss Security Guidelines, Recommendations and Best Practices for Kubernetes
|
- Discuss Network Function Virtualization (NFV) Security
|
|
| Module 12: Enterprise Cloud Security |
- Understand Cloud Computing Fundamentals
|
- Discuss security in Microsoft Azure Cloud
|
- Understanding the Insights of Cloud Security
|
- Discuss security in Google Cloud Platform (GCP)
|
- Evaluate CSP for Security before Consuming Cloud Service
|
- Discuss general security best practices and tools for cloud security
|
- Discuss security in Amazon Cloud (AWS)
|
|
| Module 13: Wireless Network Security |
- Understand wireless network fundamentals
|
- Understand wireless network authentication methods
|
- Understand wireless network encryption mechanisms
|
- Discuss and implement wireless network security measures
|
| Module 14: Network Traffic Monitoring and Analysis |
- Understand the need and advantages of network monitoring
|
- Perform network monitoring and analysis for suspicious traffic using Wireshark
|
- Setting up the environment for network monitoring
|
- Discuss network performance and bandwidth monitoring tools and techniques
|
- Determine baseline traffic signatures for normal and suspicious network traffic
|
|
| Module 15: Network Logs Monitoring and Analysis |
- Understand logging concepts
|
- Discuss log monitoring and analysis in Firewall
|
- Discuss log monitoring and analysis on Window systems
|
- Discuss log monitoring and analysis on Router
|
- Discuss log monitoring and analysis on Linux
|
- Discuss log monitoring and analysis on Web Servers
|
- Discuss log monitoring and analysis on Mac
|
- Discuss centralized log monitoring and analysis
|
| Module 16: Incident Response and Forensic Investigation |
- Understand incident response concept
|
- Describe incident handling and response process
|
- Understand the role of first responder in incident response
|
- Describe forensics investigation process
|
- Discuss Do’s and Don’ts in first response
|
|
| Module 17: Business Continuity and Disaster Recovery |
- Introduction to Business Continuity (BC) and Disaster Recovery (DR) concepts
|
- Explain Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP)
|
|
|
|
| Module 18: Risk Anticipation with Risk Management |
- Understand risk management concepts
|
- Learn vulnerability Assessment and Scanning
|
- Learn to manage risk through risk management program
|
- Learn to manage vulnerabilities through vulnerability management program
|
- Learn different Risk Management (RMF)
|
|
| Module 19: Threat Assessment with Attack Surface Analysis |
- Understand the attack surface concepts
|
- Discuss attack surface analysis specific to Cloud and IoT
|
- Learn to understand and visualize your attack surface
|
- Learn to perform attack simulation
|
- Learn to identify indicators of Exposures (IoE)
|
- Learn to the attack surface
|
| Module 20: Threat Prediction with Cyber Threat Intelligence |
- Understand role of cyber threat intelligence in network defence
|
- Understand the layers of Threat Intelligence
|
- Understand the types of threat intelligence
|
- Learn to leverage/consume threat intelligence for proactive defence
|
- Understand the Indicators of Threat Intelligence: Indicators of Compromise (IoCs) and Indicators of Attack (IoA)
|
|
| Appendices (Self-Study)
Appendix A: Computer Network Fundamentals |
- Understand various network fundamental concepts
|
- Understand other network related terminologies
|
- Understand the working of different protocols in TCP/IP suite
|
- Learn to troubleshoot basic network issues with network troubleshooting utilities
|
- Understand the concepts of IP Addressing and port numbers
|
|
| Appendix B: Physical Network Security |
- Understand the importance of physical security
|
- Describe Workplace Security
|
- Describe various physical security controls
|
- Describe various Environmental Controls
|
| Appendix C: Virtual Private Network (VPN) Security |
- Understand the working of VPN
|
- Explain VPN security risks
|
- Understand the VPN Components
|
|
- Explain different VPN types and categories
|
- Discuss Deployment Quality of Service and Performance in VPNs
|
- Explain the core functions, technologies, and topologies of VPN
|
|
