|
|
Title |
Duration |
|
|
|
|
00:05:18 |
|
|
|
Security Principles
Learn key security layers and understand vital core security principles. The rest of your security plan largely stems from the core security principles, which include: confidentiality; integrity; availability; how threat and risk impact principles; and principle of least privilege. You will also learn some essentials of social engineering and emotional methods that hackers apply to convince users to divulge secret information.
|
00:42:34 |
|
|
|
|
00:28:42 |
|
|
|
Physical Security Part 2
Understand physical security #2. Computer security, removable devices and drives, mobile device security, disable logon locally, keyloggers, using mobile devices to take photos of confidential information, mobile device wireless connections to circumvent corporate security (wi-fi, bluetooth, internet), usb flash drives, UFD, thumb drives, and preventing installation of removable device drivers via GPO.
|
00:42:14 |
|
|
|
Internet Security
Understand Internet security. Browser settings; zones; secure Web sites, secure sockets layer, SSL, transport layer security, TLS, certificates, trusted root CA, intermediate CA, ActiveX controls, internet zone, intranet zone, trusted sites zone, restricted sites zone, cookies, pop-up blocker, and pop-under.
|
00:20:54 |
|
|
|
Wireless Security
Understand wireless security. Advantages and disadvantages of specific security types; keys; SSID; MAC filters, hiding the SSID, spoofing the MAC address, wi-fi protected access, WPA, WPA2, wired equivalency protocol, WEP, RADIUS, and changing the administrator password.
|
00:38:56 |
|
|
|
User Authentication Part 1
Understand user authentication. Multifactor; smart cards; RADIUS; biometrics; using Run As to perform administrative tasks, run as from the command line, user account control, UAC, fingerprint scanner, RSA SecurID, optical scanner, facial recognition, voice recognition, certificates, pin number.
|
00:41:21 |
|
|
|
User Authentication Part 2
Understand user authentication. Kerberos and time skew; using Run As to perform administrative tasks; password reset procedures. Understand password policies, password complexity; account lockout; password length; password history; time between password changes; enforce by using group policies; common attack methods, Cain and Abel, kerbcrack, and kerbsniff.
|
00:45:33 |
|
|
|
Certification Authorities Part 1
Understand user authentication. Public Key Infrastucture (PKI); understand the certificate chain; understand encryption. MAIL encryption and signing and other uses; public-key / private key; encryption algorithms; certificate properties; certificate services; PKI/certificate services infrastructure RSA, SHA1, MD5, symmetric algorithm, asymmetric algorithm, hash algorithms.
|
00:42:28 |
|
|
|
Certification Authorities Part 2
Understand user authentication, public key infrastructure (PKI), internal vs external CA, standalone vs enterprise CA, enrolling certificates, auto enrollment.
|
00:35:31 |
|
|
|
EFS File Encryption
Understand encryption. Encrypting File System, EFS; how EFS encrypted folders impact moving/copying files, public-key / private key; file encryption key, data decryption field, adding multiple users to an encrypted file, administering EFS in GPO, data recovery agent.
|
00:32:20 |
|
|
|
|
00:39:53 |
|
|
|
Understanding Permissions
Understand permissions. This objective may include but is not limited to: file; share; registry; Active Directory; NTFS vs. FAT; enabling or disabling inheritance; behavior when moving or copying files within the same disk or on another disk; multiple groups with different permissions; basic permissions and advanced permissions; take ownership; delegation.
|
01:13:47 |
|
|
|
Auditing
Understand audit policies. Types of auditing; what can be audited; enabling auditing; what to audit for specific purposes; where to save audit information; how to secure audit information.
|
00:18:44 |
|
|
|
Malware
Understand Malware. Buffer overflow, worms, trojans, spyware, adware, antivirus, windows server update services, WSUS, system center configuration manager, SCCM, windows update, Microsoft update, keeping client operating system and software updated. keeping server updated.
|
00:53:19 |
|
|
|
Client Protection
Understand client protection. User Account Control (UAC); encrypting offline folders; software restriction policies, AppLocker.
|
00:37:03 |
|
|
|
Firewalls
Understand Dedicated Firewalls. Types of hardware firewalls and their characteristics, why to use a hardware firewall instead of a software firewall, SCM, Secure Content Management, UTM, Unified Threat Management, stateful vs. stateless inspection, DMZ, perimeter networks.
|
00:33:44 |
|
|
|
Network Access Protection
Understand Network Access Protection, purpose of NAP, requirements for NAP, System Health Agent, SHA, System Health Validator, SHV, NAP enforcement for IPSec, VPN, 802.1x, Terminal Services Gateway, DHCP, Client Compatibility with NAP.
|
00:31:29 |
|
|
|
Network Isolation
Understand Network Isolation. VLANs, routing, honeypot, perimeter networks, DMZ, NAT, network address translation, virtual private network, VPN, separate management VLAN
|
00:36:00 |
|
|
|
Protocol Security
Understand Network Isolation. IPSec, Server and Domain Isolation, Understand protocol security, protocol spoofing, tunneling, DNSsec, network sniffing, wireshark, winpcap, common attack methods.
|
00:42:04 |
|
|
|
Email Protection
Understand E-Mail Protection. antivirus, antispam, spoofing, phishing, pharming, client vs. server protection, Sender Permitted Framework, SPF, real-time black list, RBL, DNS Black List, DNSBL, Barracuda anti-spam products, spamarrest, using MX records to find email servers, viewing email header information.
|
00:23:50 |
|
|
|
Server Protection
Understand Server Protection. separation of services; hardening, keeping server updated, secure dynamic DNS updates, disabling unsecured authentication protocols, read-only domain controllers, RODC, Microsoft Baseline Security Analyzer (MBSA), Best Practices Analyzer, BPA.
|
00:29:30 |
