Home | Career Tracks | Boot Camps | Course Search | Student Log In | Request Info | 1-800-482-3172 | Contact Us

About Us
Corporate IT Training
Vocational IT Training
CareerSource Solutions
Government/VA Solutions
Financing Options
Other Training Information
Student Resources
Entrance Exam TEST
Career Services
Promotions
Press Releases
Course Catalog
Course Search
Forms
Real Estate Classes
Store
Connect With Us

ENSA: Certified Network Security Administrator Boot Camp

 

 

Click Here to View Schedules & Pricing and to Enroll Online

 

 

Duration: 5 Days

 

 

Description:

 

This course looks at the network security in defensive view. The ENSA program is designed to provide fundamental skills needed to analyze the internal and external security threats against a network, and to develop security policies that will protect an organization’s information. Students will learn how to evaluate network and Internet security issues and design, and how to implement successful security policies and firewall strategies. In addition, they will learn how to expose system and network vulnerabilities and defend against them.

The EC-Council's NSA certification looks at the network security in defensive view while the CEH certification program looks at the security in offensive mode. The NSA program is designed to provide fundamental skills needed to analyze the internal and external security threats against a network, and to develop security policies that will protect an organization’s information. Students will learn how to evaluate network and Internet security issues and design, and how to implement successful security policies and firewall strategies. In addition, they will learn how to expose system and network vulnerabilities and defend against them.

 

 

Prerequisites:

 

Who Should Attend
• System administrators
• Network administrators
• Anyone who is interested in network security technologies.
• Those who plan to take the CEH course but lack the requisite experience.

 

 

 

What's Included:

  • Authorized Courseware
  • Intensive Hands on Skills Development with an Experienced Subject Matter Expert
  • Hands on practice on real Servers and extended lab support 1.800.482.3172
  • Examination Vouchers  & Onsite Certification Testing
  • Academy Code of Honor: Test Pass Guarantee
  • Optional: Package for Hotel Accommodations, Lunch and Transportation

 


Authorized Training:

 

The Academy is proud to be the #1 Microsoft Gold Certified Partner for Learning Solutions (CPLS) in Florida. 

 

 

 

Course Outline:

Module I: Fundamentals of Computer Network
• Key elements of network
• Logical Elements of Network
• Types of network media
• Media Access Methods
• Critical information characteristics
• Information states
• Operations Security (OPSEC)
• Object reuse(computer security)
• OSI Model
• Transmission Modes
• Types of Transmission
• Logical Network Classification
• Network Topologies
• Physical Network Classification
• Network Equipments
Module II: Network Protocols
• Introduction to protocols
• Implementing Network protocols
• Application Layer Protocols
• Presentation Layer Protocol
• Session Layer Protocol
• Transport Layer Protocols
• Network Layer Protocols
• Data link Layer Protocol
Module III: Protocol Analysis
• Overview of tcp/ip
• Relation to other Protocol
• TCP/IP Protocol suite
• Windowing
• Sliding Window
• Acknowledgement
• TCP
• IP
Module IV: Hardening Physical Security
• Need for physical security
• Security Statistics
• Physical Security Breach Incidents
• Factors Affecting Physical Security
• Physical Security Threats
• Premises Security
• EPS (Electronic Physical Security)
• Challenges in Ensuring Physical Security
• Mantrap
• Physical Security Checklist
Module V: Network Security
• Overview of Network Security
• The need for network security
• The goals of network security
• Security awareness
• Functions of Network security administrator
• Communication Security (COMSEC)
• Functions of INFOSEC Officer
• Functions of information resources management staff
• program or functional managers
• security office
• senior management
• system manager and system staff
• telecommunications office and staff
• Functions of audit office
• Functions of OPSEC managers
• Role of end users
• Network Security at:
• Transmission Security
• Legal Elements
• Countermeasures: cover and deception
• Reporting security violations
Module VI: Security Standards Organizations
• Internet Corporation for Assigned Names and Numbers (ICANN)
• International Organization for Standardization (ISO)
• Consultative Committee For Telephone and Telegraphy (CCITT)
• International Telecommunication Union (ITU)
• American National Standards Institute(ANSI)
• Institute Of Electronics and Electrical Engineers(IEEE)
• Electronic Industries Association
• National Center for Standards and Certification Information (NIST)
• World Wide Web Consortium (W3C)
• Web Application Security Consortium (WASC)
Module VII: Security Standards
• Introduction to Internet Standards
• Standards Creation Committee
• Internet Standards
• Cabling Standards
• Specification Standards
Module VIII: Security Policy
• Security Policy overview
• Concept of Security Policy
• Key Security Elements
• Security Awareness Programs
• Vital role of a security policy
• Classification of Security policy
• Contents of Security Policy
• Privacy and Confidentiality
• Security levels
• Agency Specific AIS and Telecommunications Policies
• Configuration of security policy
• National Policy and Guidance
• Implementation of security policy
• Incident Handling and Escalation Procedures
• Security operations and life cycle management
• Defining Responses to Security Violations
• Presenting and Reviewing the Process
• Compliance with Law and Policy
• Transborder encryption issues
• Points To Remember While Writing Security Policy
• Issue-specific Security Policy (ISSP)
• Creating and Managing ISSPs
Module IX: IEEE Standards
• Introduction to IEEE standards
• IEEE LAN Protocol Specification
• Wireless Networking Standards
Module X: Network Security Threats
• Current Statistics
• Types of Attackers
• Classification of Hackers
• Techniques
• Common Vulnerabilities and Exposures (CVE)
• Attacks
• Hiding Evidence of an Attack
• Problems Detecting Network Attacks
• Network Scanning Tools:
Module XI: Intrusion Detection System (IDS) and Intrusion Prevention Systems (IPS)
• Introduction to IDS
• History of Intrusion Detection
• Intrusion Detection Concepts
• IDS for an Organization
• Characteristics of IDS
• Aggregate Analysis with IDS
• Types of IDS
• Deployment of IDS
• Types of Signatures
• True/False-Positive/Negative
• Major Methods of Operation
• IDS Tool
• Intrusion Prevention System
• Information Flow in IDS and IPS
• IPS Tool
• IDS vs. IPS
• Intrusion Detection Checklist
Module XII: Firewalls
• Firewalls: Introduction
• Security features
• Multiple components of Firewall
• Firewall Operations
• Software Firewall
• Hardware Firewall
• Types of Firewalls
• Pix Firewall
• Basic features of PIX firewall
• Advanced Features of PIX firewall
• Firewall Features
• Establishing Rules and Restrictions for your Firewall
• Firewall Configuration Strategies
• Scalability
• Firewall Architecture
• Handling threats and security tasks
• Protection against hacking
• Centralization and Documentation
• Multi-layer firewall protection
• Firewall deployment strategies
• Specialty firewalls and Reverse firewalls
• Advantages of using Firewalls
• Disadvantages of using Firewalls
• Threats
• Limitations of Firewalls
• Personal Firewall Software
• Personal Firewall Hardware
• Firewall Log Analysis
• Firewall Tools
• Comparison of Various Firewall Products
• T-REX Open Source Firewall
• SQUID
• WinGate
• Symantec Enterprise Firewall
• Firewall Testers
Module XIII: Packet Filtering and Proxy Servers
• Application layer gateway
• Proxy servers
Module XIV: Bastion Host and Honeypots
• Bastion Hosts
• Honeypot
• Honeynet
Module XV: Securing Modems
• Introduction to Modems
• Origin of Modems
• Modem Features
• Types of Modems
• Modem Security
• Categorizing Modem Access
• Modem Attacks
• Modem Risks
• Modem Failure Symptoms
• Troubleshooting Modems
Module XVI: Troubleshooting Network
• Introduction to troubleshooting
• A Troubleshooting Methodology
• Troubleshooting Network devices
• Troubleshooting Network Slowdowns
• Troubleshooting Wireless devices
• Troubleshooting Methodology
• TCP/IP Troubleshooting Utilities
Module XVII: Hardening Routers
• Introduction to Routers
• Routing Metrics
• Multiple Routing
• Types of Routers
• Routing Algorithms
• Internet work Operating Systems (IOS)
• IOS: FEATURES
• Routing Principles
• Modes Of Operation
• IP Routing
• IP Source Routing
• Configuration of Routers
• Router Configuration Modes
• Finger Tool
• Disabling the auxiliary and closing extra interfaces
• BOOTp service
• TCP and UDP small servers
• Disabling Proxy ARP
• Disabling SNMP
• Disabling NTP
• Hardening a Router
• Cisco Discovery Protocol
• Filtering Network Traffic
• Access Control List
• Log System Error Messages
• Securing Routers: Committed Access Rate
• Securing Routers: Secure Shell
• Router Commands
• Types of Routing
• Routing Protocols
• Routing Table Maintenance Protocol (RTMP)
• Troubleshooting a router
• Components of router security
• Router security: testing tools
Module XVIII: Hardening Operating Systems
• BIOS security
• Windows Registry
• Configuring Windows Services
• Resource Access
• Discretionary Access Control List (DACL)
• Objects And Permissions
• Rights Vs Permissions
• NTFS File System Permissions
• Encryption File System
• Windows Network Security
• Modes of Operation (Describes the security conditions under which the system actually functions)
• AIS
• Windows infrastructure features
• Kerberos Authentication And Domain Security
• Trust Relationships Between Domains
• IP Security
• Windows Security Tools
• Windows
• Windows Certificate Authorities
• Certificate Authority Requirements
• Desktop Management
• File Management
• Linux
• Pluggable Authentication Module
• Network Information Services
• Group Management Utilities
• Permission Management Tools
• System Logger Utility
• Unix Security
• Macintosh Security
• Vista security
Module XIX: Patch Management
• Introduction
• The Patch Concept
• Patch testing
• Patch Monitoring and Management
• Consolidating Patches on Red hat Network
• Red Hat Up2date Patch Management Utility Installation Steps
• Red Hat Up2date Patch Management: Command Line Interface
• Reporting
• Patch Management Process
• Windows Update Services
• Microsoft Patch Management Tool: Microsoft Baseline Security Analyzer
• Patch Management Tool
Module XX: Log Analysis
• Introduction to Log Analysis
• Overview of log analysis
• Audit Events
• Log Files
• Limitations of log files
• Monitoring for Intrusion and Security Event
• Log Analysis Tools
• How to Secure Logs(Log Security)
• Inc setting up of Servers: IIS & Apache
Module XXI: Application Security
• Importance of Application Security
• Why Is Web Security So Difficult?
• Application Threats and Counter Measures
• Application dependent guidance
• Web Applications
• System Life Cycle Management
• Telecommunications Systems
• Securing voice communications
• Securing data communications
• Securing of keying material
• Transmission security countermeasures (e.g., callsigns, frequency, and pattern forewarning protection)
• Embedded Application Security (EMBASSY)
• Secure Coding
• Threat modeling
Module XXII: Web Security
• Overview of Web Security
• Common Threats on Web
• Identifying Unauthorized Devices
• Restrictive Access
• Network Addresses
• Tracking the Connectivity: Tracert/Traceroute
• Testing the Traffic Filtering Devices
• IIS Server
• Client Authorization
• Client-Side Data
• Server-side data
• Client Authentication
• Input Data Validation
• Browsing Analysis
• Browser Security
• Plug-ins
• Common Gateway Interface(CGI)
Module XXIII: E-mail Security
• Overview of E-mail
• History of E-mail
• Basics of E-Mail
• Types of E-Mail
• Web Based Versus POP3 E-mail
• Components of an Email
• E-Mail Servers
• E-Mail Encryption
• Installing WorkgroupMail
• Configuring Outlook Express
• Secure Email
• E-mail Authentication
• E-mail protocols
• Client and server architecture
• E-Mail Security Risks
• How to defend against E-Mail security risks
• Tools for E-mail Security
• Tracking e-mails
Module XXIV: Authentication: Encryption, Cryptography and Digital Signatures
• Authentication
• VeriSign Authentication
• Encryption
• Cryptography
• Digital Certificates
• Certificate Encryption Process
• Public and Private Keys
• Digital Signatures
• key management protocols (bundling, electronic key, over-the-air rekeying)
Module XXV: Virtual Private Networks and Remote Networking
• Introduction to Virtual Private Network
• Types of VPN
• Tunneling
• Fundamentals of Tunneling
• Tunneling Protocol
• Point to point Tunneling Protocol(PPTP)
• Layer 2 Tunnel Protocol
• VPN Security
• Connection to VPN
• VPN Policies
• VPN Registrations And Passwords
• Risk Associated With VPN
• Pre Implementation Review – Auditing
• Implementation Review – Auditing
• Post Implementation Review And Reporting
• VPN Product Testing
• Common VPN Flaws
Module XXVI: Wireless Network Security
• Introduction to Wireless
• Types of Wireless Networks
• Components of Wireless Network
• Wireless Technologies
• Wireless Communications: Examples
• Devices using Wireless Communications
• Service Set IDentifier (SSID)
• Detecting Wireless Network
• Types of Wireless Attacks
• Wireless Threats
• Overview of Wi-Fi
• Open Wi-Fi Vulnerabilities
• WLANs in Public Space
• Wired Equivalent Privacy
• WAP
• Wireless Network Attack Tool: AirSnarf
• Tools to detect MAC Address Spoofing: Wellenreiter v2
• WLAN Management
• Wireless Security
• Wireless Auditing
• DHCP Services
• Mobile Security Through Certificates
• Certificate Management Through PKI
• Trouble Shooting Wireless Network
• Wireless Network Security Checklist
Module XXVII: Creating Fault Tolerance
• Network Security: Fault Tolerance
• Why Create Fault Tolerance
• Network Security
• Reasons for Network Failure
• Reasons For System Failure
• Preventive Measures
Module XXVIII: Incident Response
• What is an Incident
• Category of Incident
• Types of Incident
• Step by Step Procedure
• What Is an Incident Response
• Six Step Approach for Incident Handling (PICERF Methodology)
• Incident Response Team
• Obstacles in Building a Successful Incident Response Team
• Computer Security Incident Response Team
Module XXIX: Disaster Recovery and Planning
• Overview of Disaster and its types
• What is a Disaster Recovery
• Principles of Disaster Recovery
• Types of Disaster Recovery Systems
• Backup Site
• Recovery of Small and Large Computer Systems
• Emergency Management
• Disaster Recovery Planning
• Security Planning
• Process of Disaster Recovery Plan
• Disaster Recovery Testing
• Contingency Planning/Disaster Recovery
• contingency plan components, agency response procedures and continuity of operations
• team member responsibilities in responding to an emergency situation
• guidelines for determining critical and essential workload
• determination of backup requirements
• development of procedures for off-site processing
• development of plans for recovery actions after a disruptive event
• emergency destruction procedures
• Disaster Recovery Planning Team
• Business Process Inventory
• Risk Analysis
• Risk Management
• Business Continuity Planning Process
• Emergency destruction procedures
• Six myths about Business Continuity Management and Disaster Recovery
• Disaster Prevention
Module XXX: Network Vulnerability Assessment
• Vulnerability Assessment
• Features of a good vulnerability assessment
• Vulnerability classes
• Choice of Personnel for Network Vulnerability Assessment
• Network vulnerability Assessment methodology:
• How to assess vulnerability assessment tools
• Selecting vulnerability assessment tools

 


Academy Code of Honor:  

The Academy guarantees that students shall pass all vendor examinations during the training program or may re-attend within one year of the program completion date. Students will only be responsible for accommodations and vendor exam fees.  

Student Login | Request Info | Course Search | Contact Us