Course description
After this course, the auditor should be able to understand the functions of each type of technology and the limitations and the risks of using them in their organization.
Syllabus
Firewall and Network Security
Video — 00:15:19
Dig deeper into firewall and network security: packet, stateful, application and next-gen.
Log Management Using SIEM
Video — 00:09:50
Look at log management using SIEM: logging, converting with APIs and supplementing with IDS/IPS.
Wireless Considerations
Video — 00:10:25
Explore WEP, WPA and WPA2.
Considerations for Cloud Computing
Video — 00:12:47
Cloud computing is full of possibilities. Look at IaaS, PaaS, SaaS, private, public, community and hybrid clouds.
Mobile Computing Issues
Video — 00:10:49
You need a good MDM system and a good MAM system if you are going to do BYOD.
IoT
Video — 00:05:59
Giving physical objects the capability to communicate, or: is your hot water heater smart?
Virtualization
Video — 00:10:22
Hypervisors, guest virtual machines, software-defined networking (SDN) and containerized development in the cloud.
Industrial Control Systems
Video — 00:08:17
Look at the types of systems and data (SCADA).
Meet the author
J Kenneth (Ken) Magee is President and owner of Data Security Consultation and Training, LLC. He holds a Bachelor’s degree from Robert Morris College in Pennsylvania and a Master’s degree from Fairleigh Dickinson University in New Jersey.
He has taught cybersecurity at many different venues, including the JAG school at the University of Virginia; KPMG Advisory University; Microsoft; several major Federal financial institutions; and Federal Government agencies. Ken has also taught cybersecurity classes in the UK, Ireland, Germany, Canada, and Mexico.
In his teaching credentials, Ken is an ISACA certified instructor for CISM, CRISC, and CGEIT. He has completed the Train-the-Trainer course from (ISC)2 and Microsoft. He is also a Provisional CCP and CCA Instructor for CYBER-AB.
In addition to many years in IT, Ken has achieved several certifications in the cyber security/information security field:
CYBER-AB – CCP, Provisional CCA, Provisional CCI
(ISC)2 – CISSP, SSCP, CCSP, CGRC, ISSMP, ISSAP, ISSEP
ISACA – CISM, CISA, CRISC, CGEIT, CAC (Cybersecurity Audit Certificate)
EC-Council – CEH
ANSI-RABS – ISO9000LA, ISO14001LA, ISO27001PA
CompTIA – Security+, CySA+, CASP, CTT+
IACRB – CPT
SANS – GSEC, GSNA, GWAPT
IIA – CIA, CGAP
ACFE – CFE
Microsoft – MCP, MCSA, MCSE, MCT
Ken has spoken to several different groups, including Georgetown University School of Law, Advanced eDiscovery Institute; AFCEA; and VASCAN.
As Chief Information Security Officer for the Virginia Community College System, Ken’s focus was standardization of security around the ISO 27000 series framework. Writing is one of his passions and he has authored and/or co-authored several courses, including CISSP, CISA, CISM, CGEIT, CRISC, DoD Cloud Computing SRG, CMMC-Certified Professional, CMMC-Certified Assessor Level 1 and a course for training Security Control Assessors using NIST SP 800-53A.
When not teaching, writing, or consulting, Ken devotes his spare time to animal rescue, (dogs and cats from no-kill shelters); being a student in language (French) and music (Banjo); doing genealogical research about his Scottish heritage; historical research about the Knights Templar and the British Navy sailing ships from the late 1700’s.
Unlock 7 days of free training
- 1,400+ hands-on courses and labs
- Certification practice exams
- Skill assessments
Associated NICE Work Roles
All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.
- All-Source Analyst
- Mission Assessment Specialist
- Exploitation Analyst
You're in good company
We use Infosec Skills to provide continuous training to our technicians and to prepare them for various certifications. Infosec Skills allows us to create personalized training programs that focus on each of our technicians’ particular roles and see their progress as they take courses. We also, recommend it to clients to make their IT support teams better.
Caleb Yankus
This has been utilized to bridge the skills gap across our cyber team and to aid them as they prepare for their various certifications. It also has provided a nice learning foundation for our various cyber team members to utilize as we continue to find ways for cross-utilization with operations while minimizing the downtime needed to ensure everyone’s knowledge is the same.
Daniel Simpson
We use Infosec Skills to provide base level knowledge for employees. We also use the services to provide in depth learning for employees as they encounter new technologies. If an employee is is assigned to a new project, we can rely on Infosec Skills to provide a rapid concentrated learning environment. This rapid concentrated learning positions our employees for success.
Infosec Skills Teams client
Plans & pricing
-
Infosec Skills Personal
- 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Custom certification practice exams (e.g., CISSP, Security+)
- Skill assessments
- Infosec peer community support
-
Infosec Skills Teams
- Team administration and reporting
- Dedicated client success manager
-
Single sign-on (SSO)
Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
-
Integrations via API
Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
- 190+ role-guided learning paths and assessments (e.g., Incident Response)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Create and assign custom learning paths
- Custom certification practice exams (e.g., CISSP, CISA)
- Optional upgrade: Guarantee team certification with live boot camps
Award-winning training that you can trust
