| Website: | Link: | Mailing Address and General Inquiries: | E-mail: |
|---|---|---|---|
| www.SANS.org | Webpage | THE SANS INSTITUTE 5401 Westbard Avenue, Suite 1501 Bethesda, MD 20816 | info@sans.org |
| Average Lenth of Courses | On-Site Training | On-line Training | Discounts Available | Available Courses |
|---|---|---|---|---|
4 or more 10% 8 or more 15% 12 or more 20% must register same day Early registration - $100 off Security Essentials Bootcamp and the CISSP 10 Domains | Firewalls, Perimeter Protection and VPNS Intrusion Detection - w/certification Hacker Techniques, Exploits and Incident Handling Securing Windows Securing Unix Auditing Networks Perimeters and Systems Systems Forensics, Investigations, and Response Security +S IT Security Audit Essentials Security Leadership Essentials for Managers |
System Administration, Networking and Security (SANS) - “SANS training provides a core set of educational courses designed to help master the practical steps necessary for defending systems and networks against the most dangerous threats - the ones being actively exploited. The courses were developed through the community consensus of hundreds of administrators, security managers, and information security professionals, and address both security fundamentals and the in-depth technical aspects of the most crucial areas of information security. SANS training can be taken in a classroom setting from SANS-certified instructors, or self-paced over the internet.”
Security Essentials Bootcamp and the CISSP 10 Domains - This track focuses on Risk Assessment and Auditing, Host and Network Based Intrusion Detection, Honeypots, Firewalls and Perimeter Protection, Security Policy, Password Management, Security Incident Handling - The Six Steps, Information Warfare, Web Security, Network Fundamentals and IP Concepts and Behavior, Cisco Router Filters, Four Primary Threats for Perimeter Protection, PGP, Stenography, Anti-Viral Tools, Windows (2000, XP, NT, 98) Security Adminstration and Auditing, IIS Security and Unix Security Fundamentals.
CISSP 10 Domain Courese Topics: Access Control Systems and Methodology, Application and Systems Development, Business Continuity Planning, Cryptography, Law, Investigation and Ethics, Operations Security, Physical Security, Security Architecture and Models, Security Management Practices and Telecommunications, Network and Internet Security.
Firewalls, Perimeter Protection, and VPNS – A sampling of topics taught are: IP Stimulus/Response and Fragmentation, Complex IP Transport and Services, TCPdump, WINdump, Ethereal and Other Sniffers, Busines Needs vs Security, Static Packet Filtering, Stateful Packet Filtering and Inspection, Proxies, In-depth Coverage of Popular Firewall Products, Intrusion Detection, Centralized Logging, Firewall Log File Analysis, Log File Altering, IPSec, SSL and SSH, Designing a Secure Perimeter, "Cool Tools", and Network and Host Based Auditing.
Intrusion Detection in Depth - This course offers a quick start in intrusion detection. All of the courses are either new or just updated to reflect the latest attack patterns. This track focuses on, TCP/IP; fragmentation, ICMP, Microsoft networking and security, client and server interaction, routing, IPSec. Hands-on TCPdump Analysis; mechanics of running TCPdump, dissection of packets, general network traffic analysis, hands on exercises using an Intrusion Detection System such as Snort or Shadow. IDS signatures and analysis; intrusion detection architecture, intrusion detection analysis, traffic and external analysis.
Hacker Techniques, Exploits and Incident Handling - This program is for security professionals who seek to understand how hacker tools work, what vulnerabilities they exploit, and how to block them. It also teaches the step-by-step process by which they prepare for and respond to attacks at their systems.
Securing Windows - is a comprehensive curriculum for securing Windows 2000/XP networks. The seminars bring the confusing complexity of Windows 2000/XP security into clear focus by starting with foundational security services, such as Active Directory and Group Policy, and advancing in a logical progression to particular products or features which rely on these foundations, such as IIS and IPSec.
Securing Unix – The track provides in-depth coverage of Unix-specific security issues. They will teach you how the Unix semantics for file storage, program execution, and memory layout help your ability to secure a Unix system. You will also look at the specific configuration choices needed to secure the most commonly used Unix servers: Apache, Sendmail, and more. You will see the exact steps necessary to secure the two most common Unix flavors: Solaris and Linux. You will learn how to use freely available tools to handle security issues. They will cover the installation, basic use, and advanced options so that you can start using these tools as soon as you return to work. They will put these tools to use in the special section on Unix Forensics. They also include a detailed section on the installation, configuration, basic use, and advanced operation of SSH, as it is so crucial for Unix system management.
Auditing Networks, Perimeters and Systems - This track is based on known and validated threats. From there, SANS builds the countermeasures and defenses including instrumentation, metrics and auditing.
Systems Forensics, Investigations, and Response - Beginning with foundation concepts such as file system structures, MAC times, and basic forensic auditing, the content and difficulty level of this track advances rapidly. You'll learn how and when to use various tools such as the UNIX The Coroner's Toolkit (TCT), the Windows Incident Response Collection Report (IRCR), and then quickly move on to advanced forensic and incident response topics and techniques.
Security +S - This introductory track contains a variety of topics optimized to enable the ISO to acquire the body of technical knowledge and communication skills needed to converse effectively with personnel in all elements of their organization. Key components of the track include: understanding the threats and risks to information and information resources, identifying best practices that can be used to protect them, and learning to diversify our protection strategy.
IT Security and Audit Essentials - is designed for individuals entering the information security industry who are tasked with auditing organization policy, procedure, risk, or policy conformance. Topics include fundamentals of cryptography, an introduction to covert channels, basic network theory and network security, an introduction to firewalls, wireless technologies and other topics from that track. The additional days deal with auditing theory and its real world application. Specific attention is given to effective auditing of Windows NT, Windows 2000, Domain Controllers, Active Directory Peers, Novell 5 Servers, Unix hosts, routers, wireless devices, and palmtop computing devices. Students will also be prepared to perform limited risk assessments as well as security and conformance audits based on established best practice. A Sampling of Topics: Host- and Network-Based Intrusion Detection, Firewalls and Honeypots, Vulnerability Scanners, Computer Security Policies, Password Management, Incident Handling, Information Warfare, Encryption, Steganography, VPN's, PKI, and PGP.
Security Leadership Essentials for Managers - SANS has taken the leading standard for anyone in
information security, from the SANS Security Essentials Track including the CISSP 10 Domains, and built it
into a framework designed to ensure managers understand the terminology, concepts and technology of information
security.
Last modified: