| Title | Description | Duration | Outline |
|---|
|
Employee IT Security Awareness Overview
|
In many cases, your employees represent the first line of defense from cyber security threats,
and what they don't know CAN hurt you.
This briefing is designed to communicate
your most critical IT security directives
to all your employees.
We will adapt the content to reflect your company's
specific Policies, Procedures, and culture.
Based on your input,
the delivery will summarize the information
that all employees need to know
to be vigilant and prepared against cyber threats.
NOTE: This class can be delivered in various formats such as traditional classroom, web-based, or online playback
to allow you to reach your entire target audience with a mix of delivery options.
Level: Overview
|
2-4 hours
| |
|
Administering Data Track Technology's SAMS
|
Prepares participants to administer
Data Track Technology's Secure Access Managment System.
Learn how to implement SAMS to manage secure
access, authorization, and auditing
of remote devices in communications networks.
Level: Introduction
|
1 1/2 Days
| |
|
Beyond NERC CIP: Maintaining Compliance While Reducing Risk
|
Far more than just a synopsis of
NERC CIP
(North American Electric Reliabilty Corporation - Critical Infrastructure Protection)
requirements,
this course familiarizes participants with the NERC CIP
in the broader context of
ICS (Industrial Control System) security.
Acknowledging the fact
that compliance does not guarantee security,
the course emphasizes achieving NERC CIP compliance
while realistically strengthening the organization's security posture.
Level: Introduction
|
1 Day
| |
|
CompTIA Security+ Exam Training
|
An intense class designed specifically for individuals seeking to achieve CompTIA Security+ Certification.
This course presents the key terms and concepts necessary to prepare for the exam.
Level: Introduction
|
5 Days
| |
|
Employee IT Security Awareness
|
A pillar of IT Security for any organization
is employee awareness and vigilance.
Even the most comprehensive and cutting-edge security mechanisms can be defeated
if employees are not sufficiently motivated, adequately informed, or fully engaged.
This course is customized specifically for each client's unique needs
and is designed to communicate whatever security information is deemed most critical to its employees.
Implementing new Security Policies and Procedures may bring changes to the way that personnel
access computer programs, applications, and the desktop itself.
These changes, albeit necessary, may run counter to the traditional corporate culture
and engender resistance as they are implemented.
A Security Awareness training program can be an important part
of a larger comprehensive communication strategy
to achieve the desired organizational change.
What follows is a generic framework for the course that will be customized based on your firms
existing Security Policies and Procedures.
Level: Introduction
|
1 Day
| |
|
Fundamentals of IT Security
|
A primer in IT Security
that addresses foundational topics
including:
IT Risk Analysis,
Network and Platform security,
wireless technology,
cryptography, VPNs, and Firewalls.
Emphasis is consistently placed on
understanding and mitigating risk,
defense-in-depth,
vulnerability patterns,
Best Practices,
and effective countermeasures.
Level: Introduction
|
3 Days
| |
|
Making the Business Case For Cybersecurity Training
|
Presents a structured approach
to the challenge of preparing a Business Case for IT Security training
Through a combination of lectures and lab exercises
that emphasize a cost/benefit analysis of alternatives,
participants will complete a Project Charter
for a real project they are considering.
Level: Introduction
|
1 Day
| |
|
Understanding HIPAA Security Compliance
|
The Health Information Portability and Accountability Act (HIPAA) defined rules that must be
observed in the curation of health care information.
It defines required requirements for organizations that store, process, or transmit health care information
or related sensitive data.
This course explains the HIPAA Security Rule in the context of the larger framework of IT Security,
and will help organizations understand the motivation for each requirement.
Strategies for the successful implementation of each requirement will be examined.
Level: Introduction
|
1 Day
| |
|
Understanding the Payment Card Industry Data Security Standard (PCI DSS)
|
The PCI DSS is designed to protect credit card users from the unwanted exposure
of card holder data and sensitive information.
It defines required and suggested requirements for organizations that store, process, or transmit
cardholder or related sensitive data.
This course explains PCI DSS requirements in the context of the larger framework of IT Security,
and will help organizations understand the motivation for each requirement.
Strategies for the successful implementation of each requirement will be examined.
Level: Introduction
|
1 Day
| |
|
Achieving and Maintaining Computer Network Security
|
Provides a solid understanding of
the vulnerabilities of computer networks
and presents practical defense mechanisms
to achieve secure networks.
Level: Intermediate
|
3 Days
| |
|
Achieving and Maintaining Platform/Server Security
|
Provides a solid understanding of
the vulnerabilities of Operating Systems and Servers
and presents practical defense mechanisms
to achieve secure networks.
Presents a working understanding of Hacking techniques
and practical countermeasures to achieve platform security.
Level: Intermediate
|
3 Days
| |
|
Application Security and the SDLC: A Holistic Approach
|
This course
describes how to integrate Security
throughout the Software Development Lifecycle (SDLC),
from the earliest stages of the project all the way to maintenance and decommissioning.
It presents a comprehensive understanding of
what to do at each stage
of the project and development process to assure
robust security is an integral part of your applications.
Level: Intermediate
|
1 Day
| |
|
Building Secure Software
|
Provides a solid understanding
of the concepts and techniques
underlying the design and implementation of secure software.
This class is language neutral, but can be customized to
the programming language of choice.
Level: Intermediate
|
3 Days
| |
|
Protecting Industrial Control Systems
|
Picking up where IT Security Fundamentals leaves off,
this intermediate course
examines the unique challenges
relevant to securing Industrial Control Systems (ICS) and networks.
It elaborates ICS vulnerabilities
and the deployment of effective countermeasures
with an appreciation for the practical constraints facing ICS security staff.
It presents vendor-neutral approaches and techniques
for evaluating risk and establishing strong defenses against attacks.
Level: Intermediate
|
2 Days
| |
|
Testing Web Application Security
|
This course
describes how to meet the
challenges of security testing
Web Applications.
It describes common vulnerabilities
and provides a methodology for
planning and conducting security testing.
Level: Intermediate
|
2 Days
| |
