|
CSOSP - Certified Service Oriented Security Professional
Training Schedules and Promotions
Course Code(s) : CSOSP ("Security")
Course Length : 2 Days (see also Service Oriented Package of 6 Days)
Overview: The Service Oriented Security Professional Certification
provides the IT professional a complete insight how to secure an organization's IT infrastructure from a Service perspective. It includes all service layers of the IT Solution House (DataCenter layer, IT Infrastructure Layer, IT Process Layer, IT Security Layer and IT Management Layer). Furthermore it addresses aspects like security standards, certifications, IT governance. This certification is focused on the IT Service Security in a service oriented environment.
Practical hints and tips will be
given from a security perspective (layered, vendor neutral and service oriented approach). These are applicable to enterprise wide IT environments and small and medium businesses.
The certification includes video's and example of tools essential to move your organization into the Service direction.
Prerequisites: CSOIP Certificate of attendance or CSOIP-Certificate is mandatory. Furthermore it is recommended that all students have experience in security,
knowledge of IT infrastructures and DataCenter environments prior to enrolling in the course (e.g. technical certifications in CISSP, CISM, CWSP, CEH is a benefit).
Audience: This
certification targets experienced IT Security professionals who wish to gain a solid understanding of Service Oriented Security (SOS) and to be competitive in this IT Service Security
direction.
Certificate of attendance:
Depending on the authorized training organization a certificate of attendance will be given to the student.
CSOSP Certificate: The
exam is part of the course and is a closed book exam with 60 questions. The duration of the exam is 1½ hour. Results of the exam will be communicated to the attendee within two weeks. An
official CSOSP Certificate will be given to the students who passed the exam
Course Contents:
Security in the Organization
- Why is Security Important ?
- Overview of the IT Security requirements in Organizations
- Which Sector needs what type of Security ?
- Business, Home and Roaming security
- Overview of the IT Infrastructure components for IT-Security (all layers)
- Overview of the IT Infrastructure Security Policies
- Overview of a Service Oriented Security Enterprise
IT Infrastructure Security
- DataCenter Security
- Physical Security
- Logical Security
- Overview IT Infrastructures
- Tiered Approach
- Service Oriented Approach
- Network security devices
- Routers
- Switches
- Firewalls
- Virtual Private Networks (VPN)
- Network IDS
- Wireless Access Points
- Remote Access Devices
- Terminal Services
- OS Hardening, Access Control, Management
- System security
- OS Hardening, Access Control
- File security
- 3rd Party Authentication Solutions
- Host Based IDS
- Personal Firewalls (Host based)
- Application / Software Security
- Virus, Worms, Trojan Horse & mitigation strategies
- Adware, Spyware, Trackware & mitigation tools
- Encryption at all layers
- Security logging
- Security Management
Security Policies
- ISO27001:2005, BS7799 / ISMS
- ISO20000 / BS15000 / ITIL
- Defense in Depth
- Perimeter Defense
- Honey pots
- Hackers / Crackers / Script Kiddies
- Best Practices
- Security Penetration Testing
Video's, Tools and Demonstration
- Security Video's and tools will be shown
- Live Wireless hacking (WiFi, Infrared, Bluetooth) demonstration when you bring your own laptop, PDA, (Smart) Phone !
Service Oriented Security
- End-to-End Security Management
- Security Framework
- Enterprise Security
|
