Page 1
Cybersecurity
Category overview
Category description is not available yet.
Contents
Active courses: 5
Price incl. VAT
264.45 €
Current VAT 23%
Duration
Day: 1 day · Evening: 2 days · Weekend: 1 day
Course overview
Discover the security mechanisms that you can apply in your company domain. We will explain the basic principles of information security and the concepts of security standards, which you will then apply to securing your Windows Servers. We will pay special attention to security measures for Active Directory domains. You will apply the often required standards in practice. You will practice a wide range of security measures against specific threats.
Minimum input knowledge
Knowledge of Windows Server at least at the level of the Windows Server - System Installation and Administration course, or the Active Directory - Daily Tasks of the System Administrator course. If you do not meet the above entry knowledge, we recommend choosing a lower course level or contacting us. During courses there is usually no space to explain elementary skills that are part of the expected entry knowledge.
Output knowledge
You will be able to secure Windows Server independently, handle security in the domain, face threats and security attacks. You will gain an overview of the principles of information security and inspiration about attack vectors against Windows Server.
Training syllabus
Terminology of Basic Information Security Concepts and Their Connection with Measures in Practice
Management of Information Security with Regard to the Windows, Windows Server and Active Directory Environment
Security Mechanisms of Windows Server
- Discussion of Windows system services and elements that may represent attack vectors, secure installation and configuration of Windows
Basic Concepts of Windows Server Security
- Operating system updates, updating critical applications, antivirus protection, physical server protection
Group Policy as a Tool for a Secure Unified Environment
- Principles for setting passwords in a domain, rules for using and distributing passwords, password policy and account lockout, local vs domain group policy, independent application of group policy to your own server according to international standards
Windows Updates
- Discussion of risks associated with non-updated systems, options for using the WSUS (software update service)/WSUS server service
Firewall
- Basic concept of a firewall and its implementation in Windows Server, software and hardware solutions, their advantages, disadvantages and use, principles of correct configuration, placing the server in the DMZ
User Accounts and User Groups
- Difference between a domain and local account, types of groups and their use (review), overview of strategies for assigning access rights, RBAC + security principles when sharing files
Concept of a Remote Private Network - VPN
- Options for implementing a remote network according to security level, concepts and scenarios for using VPN network protocols: PPTP, IPSec, OpenVPN and others... scenarios of use and purposefulness
Final Summary
- Discussion of possible additional measures to increase local network security, conclusion
Price incl. VAT
799.50 €
Current VAT 23%
Duration
Day: 2 days · Evening: 3 days
Course overview
Active Directory security in accordance with the requirements of ISO/IEC 27001 and 27002 standards. You will gain skills in aligning the existing security state of your enterprise domain with ISMS standards. You will be able to independently analyze, evaluate and propose measures in your corporate network so that they cover identified risks and eliminate undesirable events.
Minimum input knowledge
Knowledge of working with Windows Server at least at the level of the Active Directory - daily tasks of a system administrator course, knowledge of at least the basics of group policies. Practical experience in an enterprise IT department is an advantage.
Output knowledge
You will be able to independently implement ISMS requirements in the context of ISO/IEC 27001/27002 in a corporate network environment - Windows OS, Windows Server, Active Directory.
Training syllabus
Review of Information Security Basics
- In a playful form, we will review basic terms and necessary terminology from information security so that we can build on the advanced requirements of the standards. Basic legislative acts of Slovak legislation in this area.
Basic Principles of the ISO/IEC 27001 Standard
Information Security Management According to ISO/IEC27001
- in the context of an enterprise domain built on Active Directory and a LAN computer network. We use the second, latest revision of standard 27001 from 2013.
Procedure for Applying Recommendations According to ISO/IEC27002
Information Security Policies
- creation, examination
Asset Management
- responsibilities, asset ownership, acceptable use, return, information classification, information labeling, media management, media disposal and transfer
Access Control
- to the domain, information system, generally - access, registration and deactivation of users with regard to GDPR rights and obligations and Slovak legislation, privilege management, management of secret authentication data, examination of access rights, management of access to systems and applications, secure login, practical demonstrations in Windows OS, policy settings for compliance with this standard requirement, password control and management in the context of redundancy and substitutability, privileged programs
Cryptography Theoretically and Practically
- we will not examine mathematical procedures, but from a management point of view we will focus on cryptographic measures, key management and demonstrate individual measures in the MS Windows environment.
Physical and Environmental Security
- physical security perimeter, management of physical premises, securing offices and resources, protection against threats of the physical environment, work in a security zone, placement of devices and their protection, process from purchasing an asset/device to its secure disposal, how to manage the security of assets outside the organization
Operational Security
- configuration management, documentation of operating procedure, change management, environment segregation, measures against malicious code, backup in administrators' daily practice, monitoring and protection of the audit log, unified time settings
Communication Security
- security management at the network level, security of network services, network separation, information transfer, information exchange agreements, exchange of electronic messages, system change management procedures
Information Security Incident Management
- responsibility and procedures, reporting information security events, assessment of information security events and decisions about them, legislative and technical aspects of security incidents, recommended procedure for what to do in a security incident, lessons learned from incidents
Information Security Continuity
- continuity planning and evaluation, when redundancy is suitable, where it does and does not make sense to consider redundant sources and resources, continuity evaluation based on the company's history and current trends
Price incl. VAT
314.88 €
Current VAT 23%
Duration
Day: 1 day
Course overview
Are you an Active Directory administrator? Do you want to improve your security strategy so that it is resistant to current types of attacks? In the extended course on advanced AD security mechanisms, we will introduce new options that can improve the security of AD infrastructure for small and medium-sized enterprises.
Minimum input knowledge
Experience with Active Directory domain administration, GPO, Firewall, or the Active Directory - Daily tasks of a system administrator and Active Directory server and domain security courses. Active discussion is expected. If you do not meet the above entry knowledge, we recommend that you choose a lower course level or contact us. During courses, there is usually no space to explain elementary skills that are part of the expected entry knowledge.
Output knowledge
You will be able to handle domain security through multiple layers of protection, the layering model, Firewall rules and others. The main goal of the course is to convey new perspectives on the issue and inspire the setup of advanced security mechanisms in the AD domain.
Training syllabus
Windows Server Security Mechanisms - Repetition
- GPO - options, where to draw ideas from Windows Firewall (and its pitfalls when using antimalware products with a similar function) Windows Defender and other antimalware tools
AD Resuscitation
- Important places in the domain that need to be checked and monitored
Secure DNS
- Use of DNS proxy and different DNS protection scenarios. Setting secure replication of DNS records.
Secure Network
- Through which protocols do our users need to communicate?
Firewall for Clients, Servers, AD Controllers
- Setting rules through GPO
User Accounts and User Groups
- Why does not everyone have to be a Domain User?
Layering Model
- How to protect an administrator account from a "skilled" user? Use of selected groups in AD
Local Administrator Issue
- Local Admin Password Solution tool - yes or no? Protection of the LSASS process
What All Can Our Users Do?
- Reading from LDAP, or reading the AD database Reading and parsing group policies Running programs, exfiltration
How to Gain Eternal Life?
- Persistence on a workstation, server Persistence in AD Detecting persistence using basic and sophisticated procedures
Final Summary
- discussion about possible further measures to increase domain security conclusion
Notice
- This is an extended course - compared with a standard course day, this course has allocated
- 6 hours
- . In case of interest, it is possible to adapt the course topics tailor-made and adjust it to the needs of a specific institution (e.g. for the purposes of training IT departments, Information Security Managers, etc.)
Page 5
Cybersecurity II. - Advanced
Price incl. VAT
442.80 €
Current VAT 23%
Duration
Day: 2 days · Evening: 3 days · Weekend: 2 days
Course overview
This specialized technical course focuses on network security analysis at individual layers of the OSI model. Participants will gain practical knowledge about network attacks, defense mechanisms and implementation of security solutions, especially on Cisco devices. The course combines theoretical knowledge with extensive practical exercises in a laboratory environment.
Minimum input knowledge
The course is intended for network administrators, IT security specialists and system engineers. Knowledge of TCP/IP and other network protocols, experience with Cisco devices is an advantage
Output knowledge
After completing the course, participants will be able to: - Analyze security risks at individual layers of the OSI model - Identify network attacks by type and layer - Implement security mechanisms on switches and routers - Configure and optimize NAT, ACL and other security functions - Perform practical security analyses using Wireshark and other tools - Design network security solutions for an enterprise environment
Training syllabus
Network Models and Attacks
- OSI & TCP/IP Security according to OSI model layers Layer 2 second layer Classification of attack types Mac address flooding VLAN hopping VLAN double tagging DHCP starvation DHCP spoofing ARP spoofing SPANNING tree attack CDP reconnaissance
Designs and Network Security Solutions
- Security method: Port security Security method: DHCP snooping Dynamic ARP inspection PortFast and BPDU Guard
Layer 3 Third Layer
- Basic Cisco IOS firewall: Access lists Standard Extended Recommendations NAT Static NAT Dynamic NAT PAT (NAT overload) How do NAT logic, routing and ACL work on Cisco? Advantages and disadvantages of NAT
Higher-Layer Devices 4-7
- ESA WSA AAA
Exercises
- Basics of working with Wireshark Sniffing CDP Sniffing TELNET Network scanning nMAP and other tools
Page 6
Cybersecurity I. - Basics
Price incl. VAT
319.80 €
Current VAT 23%
Duration
Day: 1 day
Course overview
This course provides participants with basic knowledge in the area of cybersecurity with emphasis on practical applications and current legislation. The course combines theoretical basics with practical examples and real scenarios, thereby preparing participants for effective implementation of security measures in their companies.
Minimum input knowledge
Basic knowledge of working with a computer
Output knowledge
After completing the course, participants will be able to: - Analyze and implement requirements arising from NIST directives and the Slovak Cybersecurity Act - Identify and classify security threats and vulnerabilities - Design security solutions for protecting networks and data - Perform monitoring of network activity and analyze security incidents - Implement personal data protection strategies in accordance with GDPR - Cooperate with security authorities
Training syllabus
NIST 2 Directive
- Basic explanation What it means for us Cybersecurity Act Act 69/2018 Best-known attacks Symptoms of hacking
Data Privacy / Privacy of Data
- Who all collects data about us? Personal data protection Do you watch what you share? What to watch out for Encrypting data on a disk Deleting data
Protection Methods
- Hardware Software training division of firewalls multiple protection model
Network Monitoring
- What goes through our network ICMP SNMP NETFLOW
Network Security Verification
- Penetration tests - what are they?
World and National Security Authorities
- CSIRT, SK-CERT
Network Security
- Classification of vulnerabilities Classification and description of threats Classification of attacks by types Password creation Password strength Password attacks
Wireless Network Security
- WIFI classification Recommendations Public wifi Recommendations Bluetooth Recommendations Home wifi WIFI vulnerability video1