Securing and Auditing Your Network Infrastructure HANDS-ON - ASG231

You will learn network security essentials, wireless networks, cybersecurity risks and how to identify and test network security controls.

Objectives

Network Security and Audit Essentials:

• getting a handle on network terminology
• locating key network cybersecurity control points
• major risks to network cybersecurity
• overview of network communications standards and protocols
• open Systems Interconnection (OSI) reference model
• transmission control protocol/internet protocol (TCP/IP)
• network addressing fundamentals
• leveraging network utilities and services as audit tools

Protecting Physical/Media Network Access:

• common network transmission media: copper wire, fiber optics, wireless
• common LAN topologies
• WAN and internet connections
• network access control (NAC) and user authentication security
• WAN network service operation and security
• threats, safeguards, and audit procedures for media access security

Securing and Auditing Wireless Networks:

• wireless network technologies and standards
• wireless network architectures and control points
• risks to wireless networks
• wireless security controls
• discovery and audit procedures for wireless networks

Managing Network Application Services Cybersecurity Risks:

• client/server architectures and middleware–foundation for TCP/IP application services
• software-based network host security
• TCP/IP applications (ports), associated risks, and safeguards
• ICMP protocol applications, risks, and safeguards
• host-based and network-based tools for locating and assessing active network services security
• developing a TCP/IP application risk analysis and management methodology

Securing and Auditing Enterprise Network Address Management and Directory Services:

• IP address management with dynamic host configuration protocol (DHCP)
• domain name system (DNS): “Brains” of TCP/IP networking
• tools and techniques for auditing address management and directory services servers

Network Appliances: Functionality, Management, Security and Audit:

• positioning network interconnection devices in OSI reference model
• network domains and segmentation
• network routing
• network device maintenance/management port access security
• simple network management protocol (SNMP)
• networked printers, print servers, and multi-function office devices
• Internet of Things (IoT)
• network device audit tools and techniques

Securing and Auditing DMZ Networks:

• risks to Internet and other public facing network connections
• identifying DMZ cybersecurity control points
• auditing network firewalls and router access control lists
• proxy servers
• virtual private networks (VPN) and secure session protocols
• DMZ audit planning