Opleidingen

OVERVIEW This elearning package includes: Instructor led training modules (o.a. online training videos, 1 year access) Official e-courseware (1 year access) iLabs (6 month access) Certificate of Completion Examen Voucher The Certified Application Security Engineer (CASE) credential is developed in partnership with large application and software development experts globally. The CASE credential tests the critical security skills and knowledge required throughout a typical software development life cycle (SDLC), focusing on the importance of the implementation of secure methodologies and practices in today’s insecure operating environment. The CASE certified training program is developed concurrently to prepare software professionals with the necessary capabilities that are expected by employers and academia globally.It is designed to be a hands-on, comprehensive application security course that will help software professionals create secure applications. The training program encompasses security activities involved in all phases of the Software Development Lifecycle (SDLC): planning, creating, testing, and deploying an application. Unlike other application security trainings, CASE goes beyond just the guidelines on secure coding practices and includes secure requirement gathering, robust application design, and handling security issues in post development phases of application development. This makes CASE one of the most comprehensive certifications on the market today. It is desired by software application engineers, analysts, testers globally, and respected by hiring authorities.   OBJECTIVES After completing this course you should be able to: Understand secure SDLC and secure SDLC models in-depth Apply the knowledge of OWASP Top 10, threat modelling, SAST and DAST Capture security requirements of an application in development Define, maintain and enforce application security best practices Perform manual and automated code review of application Conduct application security testing for web applications to assess the vulnerabilities Drive the development of a holistic application security program Rate the severity of defects and publishing comprehensive reports detailing associated risks and mitigations Work in teams to improve security posture Use Application security scanning technologies such as AppScan, Fortify, WebInspect, static application security testing (SAST), dynamic application security testing (DAST), single sign-on, and encryption Follow secure coding standards that are based on industry-accepted best practices such as OWASP Guide, or CERT Secure Coding to address common coding vulnerabilities. Create a software source code review process that is a part of the development cycles (SDLC, Agile, CI/CD) CONTENT Understanding Application Security, Threats and Attacks What is a Secure Application Need for Application Security Most Common Application Level Attacks Why Applications become Vulnerable to Attacks What Consistutes Comprehensive Application Security Insecure Application: A Software Development Problem Software Security Standards, Models and Frameworks Security Requirements Gathering Importance of Gathering Security Requirements Security Requirement Engineering (SRE) Abuse Case and Security Use Case Modeling Abuser amd Security Stories Security Quality Requirements Engneering (SQUARE) Operationally Critical Threat, Asset and Vulnerability Evaluation (OCTAVE) Secure Application Design and Architecture Relative Cost of Fixing Vulnerabilities at Different Phases of SDLC Secure Application Design and Architecture Goal of Secure Design Process Secure Design Actions Secure Design Principles Threat Modeling Decompose Application Secure Application Architecture Secure Coding Practices for Input Validation Input Validation Pattern Validation and Security Issues Impact of Invalid Data Input Data Validation Techniques Input Validation using Frameworks and APIs Open Source Validation Framework for Java Servlet Filters Validation Filters for Servlet Data Validation using OWASP ESAPI Data Validation: Struts Framework Data Validation: Spring Framework Input Validation Errors Common Secure Coding Practices Secure Coding Practices for Authentication and Authorization Introduction to Authentication Types of Authentication Authentication Weaknesses and Prevention Introduction to Authorization Access Control Model EJB Authorization Java Authentication and Authorization (JAAS) Java EE Security Authorization Common Mistakes and Countermeasures Authentication and Authorization in Spring Security Framework Defensive Coding Practices against Broken Authentication and Authorization Secure Development Checklists: Broken Authentication and Session Management Secure Coding Practices for Cryptography Java Cryptographic Encryption and Secret Keys Cipher Class Digital Signatures Secure Socket Layer (SSL) Key Management Digital Signatures Signed Code Sources Hashing Java Card Cryptography Spring Security: Crypto Module Do's and Dont's in Java Cryptography Best Practices for Java Cryptography Secure Coding Practices for Session Management Session Management Session Tracking Session Management in Spring Security Session Vulnerabilities and their Mitigation Techniques Best Practices and Guidelines for Secured Sessions Management Checklist to Secure Credentials and Session ID's Guidelines for Secured Session Management Secure Coding Practices for Error Handling Introduction to exceptions Erroneous Exceptional Behaviors Dos and Don'ts in Error Handling Spring MVC Error Handling Exception Handling in Struts 2 Best Practices for Error Handling Introduction to Logging Logging using Log4j Secure Coding in Logging Static and Dynamic Application Security Testing (SAST and DAST) Static Application Security Testing Manual Secure Code Review for Most Common Vulnerabilities Code Review: Check List Approach SAST Finding SAST Report Dynamic Application Security Testing Automated Application Vulnerability Scanning Tools Proxy-based Security Testing Tools Choosing between SAST and DAST Secure Deployment and Maintenance Secure Deployment Prior Deployment Activity Deployment Activities: Ensuring Security at Various Levels Ensuring Security at Host Level Ensuring Security at Network Level Ensuring Security at Application Level Ensuring Security at Web Container Level (Tomcat) Ensuring Security in Orcale Security Maintenance and Monitoring

OVERVIEW OBJECTIVES CONTENT

OVERVIEW The Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) course teaches you security concepts, common network and application operations and attacks, and the types of data needed to investigate security incidents. This training teaches you how to monitor alerts and breaches, and how to understand and follow established procedures for response to alerts converted to incidents. Through a combination of lecture, hands-on labs, you will learn the essential skills, concepts, and technologies to be a contributing member of a Cybersecurity Operations Center (SOC) including understanding the IT infrastructure, operations, and vulnerabilities. This course prepares you for the Cisco Certified Cybersecurity Associate certification. This course is worth 30 Continuing Education (CE) Credits towards recertification. e-Learning Interactive self-paced content that provides flexibility in terms of pace, place and time to suit individuals and organisations. These resources also consist of online books, educational podcasts and vodcasts, and video-based learning. OBJECTIVES After completing this course you should be able to: Explain how a SOC operates and describe the different types of services that are performed from a Tier 1 SOC analyst’s perspective  Explain the use of SOC metrics to measure the effectiveness of the SOC  Explain the use of a workflow management system and automation to improve the effectiveness of the SOC  Describe the Windows operating system features and functionality  Provide an overview of the Linux operating system  Understand common endpoint security technologies  Explain the network security monitoring (NSM) tools that are available to the network security analyst  Describe security flaws in the TCP/IP protocol and how they can be used to attack networks and hosts  Explain the data that is available to the network security analyst  Describe the basic concepts and uses of cryptography  Understand the foundational cloud security practices, including deployment and service models, shared responsibilities, compliance frameworks, and identity and access management, to effectively secure cloud environments against cyberthreats  Understand and implement advanced network security, data protection, secure application deployment, continuous monitoring, and effective disaster recovery strategies to secure cloud deployments  Understand the kill chain and the diamond models for incident investigations, and the use of exploit kits by threat actors  Identify the common attack vectors  Identify malicious activities  Identify patterns of suspicious behaviors  Identify resources for hunting cyber threats  Explain the need for event data normalization and event correlation  Conduct security incident investigations  Explain the use of a typical playbook in the SOC  Describe a typical incident response plan and the functions of a typical computer security incident response team (CSIRT) CONTENT Defining the Security Operations Center Types of Security Operations Centers SOC Analyst Tools Data Analytics Hybrid Installations: Automated Reports, Anomaly Alerts Staffing an Effective Incident Response Team Roles in a Security Operations Center Developing Key Relationships with External Resources Understanding SOC Metrics Security Data Aggregation Time to Detection Security Controls Detection Effectiveness SOC Metrics Understanding SOC Workflow and Automation SOC WMS Concepts Incident Response Workflow SOC WMS Integration DevSecOps in Cybersecurity Automate Security in CI/CD Pipelines DevSecOps for Cloud-Native and Containerized Environments SecOps Collaboration and DevSecOps Culture SOC Workflow Automation Example Understanding Windows Operating System Basics (Self-Study) Windows Operating System History Windows Operating System Architecture Windows Processes, Threads and Handles Windows Virtual Memory Address Space Windows Services Windows File System Overview Windows File System Structure Windows Domains and Local user Accounts Windows GUI Run as Administrator Windows CLI Windows Powershell Windows net Command Controlling Startup Services and Executing System shutdown Controlling Services and Processes Monitoring System Resources Windows Boot Process Windows Networking Windows netstat Command Accessing Network Resources with Windows Windows Registry Windows Management Instrumentation Common Windows Server Functions Common Third-Party Tools Lab Set-up Video: Explore the Windows Operating System Understanding Linux Operating System Basics (Self-Study) History and Benefits of Linux Linux Architecture Linux File System Overview Basic File System Navigation and Management Commands File Properties and Permissions Editing File Properties Root and Sudo Disks and File Systems System Initialization Emergency/Alternate Startup Options Shutting Down the System System Processes Interacting with Linux Linux Command Shell Concepts Piping Command Output Other Useful Command-Line Tools Overview of Secure Shell Protocol Networking Managing Services in SysV Environments Viewing Running Network Services Name Resolution: DNS Testing Name Resolution Viewing Network Traffic Configuring Remote Syslog Running Software on Linux Executables vs Interpreters Using Package Managers to Install Software in Linux System Applications Lightweight Directory Access Protocol Lab Set-Up Video: Explore the Linux Operating System Understanding Endpoint Security Technologies Host-Based Personal Firewall Signature-Based and Rule-Based Monitoring Monitor Netowrk Traffic and the Endpoint Level Predictive AI in Endpoint Security Monitoring AI-Driven Behavioral Analysis for Threat Detection Machine Learning Technologies in Host-Based Monitoring Cisco ML-and AI-Powered Security Solutios Host-Based Antivirus Host Intrusion Prevention System Application Allowed Lists and Blocked Lists Host-Based Malware Protection Sandboxing File Integrity Checking Lab Set-Up Video: Explore Endpoint Security Secure Virtualized Environements Conainer Security Fundamentals Monitor and Protect Container Workloads Best Security Practices for Hybrid Environments Understanding Network Infrastructure and Network Security Monitoring Tools NAT Fundamentals Packet Filtering with ACLs ACLs with the Established Option Access Control Models Authentication, Authorization and Accounting Load Balancing Network-Based Malware Protection Network Security Monitoring Tools Understanding Common TCP/IP Attacks Address Resolution Protocol Legacy TCP/IP Vulnerabilties IP Vulnerabilities ICMP Vulnerabilities TCP Vulnerabilities UDP Vulnerabilities Attack Surface and Attack Vectors Reconnaissance Attacks Access Attacks Man-in-the-Middle Attacks Denial of Service and Distributed Denial of Service Reflection and Amplification Attacks Spoofing Attacks DHCP Attacks Exploring Data Type Categories Network Security Monitoring Data Types Security Onion Overview Full Packet Capture Packet Captures Packet Capture Using Tcpdump Session Data Transaction Data Alert data Other Data Types Correlating NSM Data Information Security Confidentiality, Integrity and Availability Personally Identifiable Information Regulatory Compliance Intellectual Property Understanding Basic Cryptography Concepts Impact of Cryptography on Security Investigations Cryptography Overview Hash Algorithms Encryption Overview Cryptanalysis Symmetric Encryption Algorithms Asymmetric Encryption Algorithms Diffie-Helman Key Agreement Use Case: SSH Digital Signatures PKI Overview PKI Operations Use Case: SSL/TLS Cipher Suite Key Management NSA Suite B Cloud Security Fundamentals Cloud Deployment and Service Models Shared Responsibility Model in Cloud Security Cloud Security Frameworks and Compliance Identity and Access Management in Cloud Environments Securing Cloud Deployments Network Security in Cloud Environments Data Protection in the Cloud Secure Cloud Workload and Applications Cloud Monitoring, Logging and Incident Response Threat Detection and Vulnerability Management in the Cloud Disaster Recovery and Business Continuity in the Cloud Understanding Incident Analysis in a Threat-Centric SOC Classic Kill Chain Model Overview Social Engineering Attack Vectors Generative AI in Social Engineering Detecting and Mitigating Social Engineering Threats Kill Chain Phase 1: Reconnaissance Kill Chain Phase 2: Weaponization Kill Chain Phase 3: Delivery Kill Chain Phase 4: Exploitation Kill Chain Phase 5: Installation Kill Chain Phase 6: Command-and-Control Kill Chain Phase 7: Actions on Objectives Applying the Kill Chain Model Diamond Model Overview Applying the Diamond Model MITRE ATTACK Framework Identifying Common Attack Vectors DNS Operations Dynamic DNS Recursive DNS Query HTTP Operations HTTPS Operations HTTP/2 Operations SQL Operations SMTP Operations Web Scripting Obfuscated JavaScript Shellcode and Exploits Common Metasploit Payloads Directory Traversal SQL Injection Cross-Site Scripting Punycode DNS Tunneling Pivoting HTTP 302 Cushioning Gaining Access Via Web-Based Attacks Exploit Kits Emotet Advanced Persistant Threat Identifying Malicious Activity Understanding the Network Design Zero Trust Model Identifying Possible Threat Actors Log Data Search System Logs Windows Event Viewer Firewall Log DNS Log Web Proxy Log Email Proxy Log AAA Server Log Next Generation Firewall Log Application Log NetFlow NetFlow as a Security Tool Network Behavior Anomaly Detection Data Loss Detection Using NetFlow example DNS Risk and Mitigation Tool IPS Evasion Techniques The Onion Router Gaining Access and Control Peer-to-Peer Networks Encapsulation Altered Disk Image Identifying Patterns of Suspicious Behavior Network Baselining Identifying Anomalies and Suspicious Behaviors PCAP Analysis Delivery Identifying Resources for Hunting Cyber Threats Cyber-Threat Hunting Concepts Hunting Maturity Model Cyber Threat Hunting Cycle Common Vulnerability Scoring System CVSS v3.0 Scoring CVSS v3.0 Example Hot Threat Dashboard Publicly Available Threat Awareness Resources Other External Threat Intelligence Sources and Feed Reference Security Intelligence Threat Analytic Systems Security Tools Reference Understanding Event Correlation and Normalization Event Sources Implementing SIEM Solutions for Effective Security Monitoring SOAR Platform Overview Cisco XDR Platform Overview Integrating XDR,SIEM, and SOAR for SOC Efficiency Evidence Chain of Custody Security Data Normalization Event Correlation Other Security Data Manipulation Conducting Security Incident Investigations Security Incident Investigation Procedures Threat Investigation Example: China Chopper Remote Access Trojan Using a Playbook Model to Organize Security Monitoring Security Analytics Playbook Definition What is a Play? Playbook Management System Describing Incident Response Incident Response Planning Incident Response Life Cycle Incident Response Policy Elements Incident Attack Categories Reference US-CERT Incident Categories Regulartory Compliance Incident Response Requirements CSIRT Categories CSIRT Framework CSIRT Incident Handling Services Labs Discovery Lab 1: Use NSM Tools to Analyze Data Categories Discovery Lab 2: Explore Cryptographic Technologies Discovery Lab 3: Explore TCP/IP Attacks Discovery Lab 4: Explore Endpoint Security Discovery Lab 5: Investigate Hacker Methodology Discovery Lab 6: Hunt Malicious Traffic Discovery Lab 7: Correlate Event Logs, PCAPs, and Alerts of an Attack Discovery Lab 8: Investigate Browser-Based Attacks Discovery Lab 9: Analyze Suspicious DNS Activity Discovery Lab 10: Explore Security Data for Analysis Discovery Lab 11: Investigate Suspicious Activity Using Security Onion Discovery Lab 12: Investigate Advanced Persistent Threats Discovery Lab 13: Explore SOC Playbooks Discovery Lab 14: Explore the Windows Operating System Discovery Lab 15: Explore the Linux Operating System

OVERVIEW The Implementing and Administering Cisco Solutions course provides a broad range of fundamental knowledge for all IT careers. Through a combination of lecture and hands-on labs, you will learn how to install, operate, configure, and verify a basic IPv4 and IPv6 network. The course covers configuring network components such as switches, routers, and Wireless LAN Controllers; managing network devices; and identifying basic security threats. Network programmability, automation, and software-defined networking are also covered at a foundational level. This course helps you prepare to take the 200-301 Cisco Certified Network Associate (CCNA) exam. This course is worth 30 CE credits towards recertification OBJECTIVES After completing this course you should be able to: Identify the components of a computer network and describe their basic characteristics Understand the model of host-to-host communication Describe the features and functions of the Cisco Internetwork Operating System (IOS®) software Describe LANs and the role of switches within LANs Describe Ethernet as the network access layer of TCP/IP and describe the operation of switches Install a switch and perform the initial configuration Describe the TCP/IP Internet layer, IPv4, its addressing scheme, and subnetting Describe the TCP/IP Transport layer and Application layer Explore functions of routing Implement basic configuration on a Cisco router Explain host-to-host communications across switches and routers Identify and resolve common switched network issues and common problems associated with IPv4 addressing Describe IPv6 main features and addresses, and configure and verify basic IPv6 connectivity Describe the operation, benefits, and limitations of static routing Describe, implement, and verify virtual local area networks (VLANs) and trunks Describe the application and configuration of inter-VLAN routing Explain the basics of dynamic routing protocols and describe components and terms of Open Shortest Path First (OSPF) Explain how Spanning Tree Protocol (STP) and Rapid Spanning Tree Protocol (RSTP) work Configure link aggregation using EtherChannel Describe the purpose of Layer 3 redundancy protocols Describe basic WAN and VPN concepts Describe the operation of access control lists (ACLs) and their applications in the network Configure Internet access using Dynamic Host Configuration Protocol (DHCP) clients and explain and configure network address translation (NAT) on Cisco routers Describe basic quality of service (QoS) concepts Describe the concepts of wireless networks, which types of wireless networks can be built, and how to use Wireless LAN Controllers (WLCs) Describe network and device architectures and introduce virtualization Explain Software-Defined Networks Configure basic IOS system monitoring tools Describe the management of Cisco devices Describe the current security threat landscape Describe threat defense technologies Implement a basic security configuration of the device management plane Implement basic steps to harden network devices Discuss the need of network programmability in Enterprise Networks, common programmability protocols, and configuration management tools. Introducing AI and ML in Network Operations CONTENT Exploring the Functions of Networking What is a Computer Network? Common Usage of a Computer Network Components of a Network Characteristics of a Network Physical vs. Logical Topologies Interpreting a Network Diagram Impact of User Applications on the Network Introducing the Host-To-Host Communications Model Host-To-Host Communications Overview ISO OSI Reference Model TCP/IP Protocol Suite Peer-To-Peer Communications Encapsulation and De-Encapsulation TCP/IP Stack vs OSI Reference Model Operating Cisco IOS Software Cisco IOS Software Features and Functions Cisco IOS Software CLI Functions Cisco IOS Software Modes   Introducing LANs Local Area Networks LAN Components Need for Switches Characteristics and Features of Switches Exploring the TCP/IP Link Layer Ethernet LAN Connection Media Ethernet Frame Structure LAN Communication Types MAC Addresses Frame Switching Duplex Communication Starting a Switch Switch Installation Connecting to a Console Port Switch Components Switch LED Indicators Basic show Commands and Information Implement the Initial Switch Configuration Introducing the TCP/IP Internet Layer, IPv4 Addressing, and Subnets Internet Protocol Decimal and Binary Number Systems Binary-to-Decimal Conversion Decimal-to-Binary Conversion IPv4 Address Representation IPv4 Header Fields IPv4 Address Classes Subnet Masks Subnets Implementing Subnetting: Borrowing Bits Implementing Subnetting: Determining the Addressing Scheme Benefits of VLSM and Implementing VLSM Private vs. Public IPv4 Addresses Reserved IPv4 Addresses Verifying IPv4 Address of a Host Explaining the TCP/IP Transport Layer and Application Layer TCP/IP Transport Layer Functions Reliable vs.Best-Effort Transport TCP Characteristics UDP Characteristics TCP/IP Application Layer Introducing HTTP Domain Name System Explaining DHCP for IPv4 Exploring the Functions of Routing Role of a Router Router Components Router Functions Routing Table Path Determination Cisco Router Models Routing Hierarchy on Internet Configuring a Cisco Router Initial Router Setup Configuring Router Interfaces Configuring IPv4 Addresses on Router Interfaces Checking Interface Configuration and Status Exploring Connected Devices Using Cisco Discovery Protocol Configure and Verify LLDP Implement an Initial Router Configuration Exploring the Packet Delivery Process Layer 2 Addressing Layer 3 Addressing Default Gateways Address Resolution Protocol Host-To-Host Packet Delivery Troubleshooting a Simple Network Troubleshooting Methods Troubleshooting Tools Troubleshooting Common Switch Media Issues Troubleshooting Common Switch Port Issues Troubleshooting Common Problems Associated with IPv4 Addressing Introducing Basic IPv6 IPv4 Address Exhaustion Workarounds IPv6 Features IPv6 Addresses and Address Types Comparison of IPv4 and IPv6 Headers Internet Contorl Message Protocol Version 6 Neighbor Discovery IPv6 Address Allocation Verification of End-To-End IPv6 Connectivity Configuring Static Routing Routing Operation Static and Dynamic Routing Comparison When to Use Static Routing IPv4 Static Route Configuration Default Routes Verifying Static and Default Route Configuration IPv6 Static Route Configuration Implement IPv4 Static Routing Implement IPv6 Static Routing Implementing VLANs and Trunks VLAN Introduction Creating a VLAN Assigning a Port to a VLAN Trunking with 802.1Q  Configuring an 802.1Q Trunk VLAN Design Considerations Troubleshoot VLANS and Trunks Routing Between VLANs Purpose of Inter-VLAN Routing Options for Inter-VLAN Routing Implement Multiple VLANS and Basic Routing Between the VLANs Introducing OSPF Dynamic Routing Protocols Path Selection Link-State Routing Protocol Overview Link-State Routing Protocol Data Structures Introducing OSPF Establishing OSPF Neighbor Adjacencies OSPF Neighbor States SPF Algorithm Building a Link-State Database Routing for IPv6 Building Redundant Switched Topologies Physical Redundancy in a LAN Issues in Redundant Toplogies Spanning Tree Operation Types of Spanning Tree Protocols PortFast, BPDU Guard and BPDU Filter Rapid Spanning Tree Protocol STP Loop Guard STP Root Guard Improving Redundant Switched Topologies with EtherChannel EtherChannel Overview EtherChannel Configuration Options Configuring and Verifying EtherChannel Improve Redundant Switched Toplogies with EtherChannel Explaining the Basics of ACL ACL Overview ACL Operation ACL Wildcard Masking Wildcard Mask Abbreviations Types of Basic ACLs Configuring Standard IPv4 ACLs Configuring Extended IPv4 ACLs Verifying and Modifying IPv4 ACLs Applying IPv4 ACLs to Filter Network Traffic Implement Numbered and Named IPv4 ACLs Enabling Internet Connectivity Introducing Network Address Translation NAT Terminology and Translation Mechanisms Benefits and Drawbacks of NAT Static NAT and Port Forwarding Dynamic NAT Port Address Translation Configuring and Verifying Inside IPv4 NAT Implement PAT Introducing AL and ML in Network Operations Basics of AI and ML Advanced AI Concepts Retrieval-Augmented Generation Role of AI and ML in Network Operations Introducing System Monitoring Introducing Syslog Syslog Message Format SNMP Overview Enabling Network Time Protocol Configure System Message Logging Managing Cisco Devices Cisco IOS Integrated File System and Devices Stages of the Router Power-On Boot Sequence Loading and Managing System Images Files Loading Cisco IOS Configuration Files Validating Cisco IOS Images Using MD5/SHA512 Managing Cisco IOS Images and Device Configuration Files Cisco IOS WebUI Securing Administrative Access Network Device Security Overview Securing Access to Priviliged EXEC Mode Securing Console Access Securing Remote Access Configuring the Login Banner Limiting Remote Access with ACLs External Authentication Options Secure Device Administrative Access Implementing Device Hardening Securing Unused Ports Infrastructure ACL Disabling Unused Services Port Security Mitigating VLAN Attacks Dynamic ARP Inspection Mitigating STP Attacks Implement Device Hardening Exploring Layer 3 Redundancy (Self-Study) Need for Default Gateway Redundancy Understanding FHRP Understanding HSRP Introducing WAN Technologies (Self-Study) Introduction to WAN Technologies WAN Devices and Demarcation Point WAN Topology Options WAN Connectivity Options Virtual Private Networks Enterprise-Managed VPNs Introducing QoS (Self-Study) Converged Networks QoS Defined QoS Policy QoS Mechanisms QoS Models Deploying End-to-End QoS Explaining Wireless Fundamentals (Self-Study) Wireless Technologies Wireless Radio Communication WLAN Architectures WI-FI Channels AP and WLC Management Introducing Architectures and Virtualization (Self-Study) Introduction to Network Design Enterprise Three-Tier Hierarchical Network Design Spine - Leaf Network Design Cisco Enterprise Architecture Model Underlay and Overlay Network Concepts Cloud Computing Overview Network Device Architecture Virtualization Fundamentals Explaining Software-Defined Networking (Self-Study) Software-Defined Networking Traditional versus Software-Defined Networks Software-Defined Network Layers Introducing Cisco Catalyst Center Cisco Catalyst Center Dashboard and Tools Introducing Cisco SD-Access Introducing Cisco Catayst SD-WAN Introducing Cisco Meraki Introducing Network Programmability (Self-Study) Traditional Network Management Network Automation and Programmability Network Automation Use Cases Model-Driven Programmability Data Encoding Formats JavaScript Object Notation Extensible Markup Language YAML Data Serialisation Standard Network Management Protocols Configuration Management Tools Overview Ansible Terraform Examining the Security Threat Landscape (Self-Study) Security Threat Landscape Overview Malware Hacking Tools DoS and DDoS Spoofing Reflection and Amplification Attacks Social Engineering Evolution of Phishing Password Attacks Reconnaissance Attacks Buffer Overflow Attacks Man-in-the-Middle Attacks Vectors of Data Loss and Exfiltration Other Considerations Implementing Threat Defense Technologies (Self-Study) Information Security Overview Firewalls Intrusion Preventions Systems Protection Against Data Loss and Phishing Attacks Defending against DoS and DDoS Attacks Introduction to Cryptographic Technologies IPsec Security Services Secure Sockets Layer and Transport Layer Security Wireless Security Protocols Labs: Discovery 1: Get Started with Cisco Command-Line Interface (CLI) Discovery 2: Observe How a Switch Operates Discovery 3: Perform Basic Switch Configuration FAST Lab 1: Implement the Initial Switch Configuration Discovery 4: Inspect TCP/IP Applications Discovery 5: Configure an Interface on a Cisco Router Discovery 6: Configure and Verify Layer 2 Discovery Protocols FAST Lab 2: Implement an Initial Router Configuration Discovery 7: Configure Default Gateway Discovery 8: Explore Packet Forwarding Discovery 9: Troubleshoot Switch Media and Port Issues Discovery 10: Troubleshoot Port Duplex Issues Discovery 11: Configure Basic IPv6 Connectivity Discovery 12: Configure and Verify IPv4 Static Routes Discovery 13: Configure IPv6 Static Routes FAST Lab 3: Implement IPv4 Static Routing FAST Lab 4: Implement IPv6 Static Routing Discovery 14: Configure VLANs and Trunk FAST Lab 5: Troubleshoot VLANs and Trunk Discovery 15: Configure Inter-VLAN Routing FAST Lab 6:  Implement Multiple VLANs and Basic Routing Between the VLANs Discovery 16: Configure and Verify Single-Area OSPF Discovery 17: Configure and Verify EtherChannel FAST Lab 7: Improve Redundant Switched Topologies with EtherChannel Discovery 18: Configure and Verify IPv4 ACLs FAST Lab 8: Implement Numbered and Named IPv4 ACLs Discovery 19: Configure a Provider-Assigned IPv4 Address Discovery 20: Configure Static NAT Discovery 21: Configure Dynamic NAT and Port Address Translation (PAT) FAST Lab 9: Implement PAT Discovery 22: Configure and Verify NTP FAST Lab 10: Configure System Message Logging Discovery 23: Create the Cisco IOS Image Backup Discovery 24: Upgrade Cisco IOS Image Discovery 25: Secure Console and Remote Access Discovery 26: Enable and Limit Remote Access Connectivity FAST Lab 11: Secure Device Administrative Access Discovery 27: Configure and Verify Port Security FAST Lab 12: Implement Device Hardening Discovery 28: Log into and Monitor the WLC Discovery 29: Configure an Open Wireless Network Discovery 30: Define a RADIUS Server and Enable SNMP and Syslog Discovery 31: Configure a WLAN to Use WPA2 PSK

OVERVIEW The course covers all five of the CISA domains, and each section corresponds directly to the CISA job practice. It uses proven instructional design techniques, incorporating an online pre-assessment, narrated interactive eLearning modules, downloadable job aids, and a practice exam. You will be able to navigate the course at your own pace following a recommended structure or target preferred job practice areas. You may also start and stop the course based on your preferred study schedule, picking up exactly where you left off the next time you return. Learners will have access to the course for 6 months from date of purchase and will earn 28 CPE upon completion. This course has a seat time of approximately 22 hours and is accessed via the Learning Access tab of your MyISACA dashboard. Please note : The exam is not included with the course but can be purchased seperately. Included Materials: Online course Downloadable job aids Online self-assessment (50 questions) Online practice exam (75 questions) OBJECTIVES By the end of this course, you will: Gain a better understanding of IS audit and assurance guidelines and standards. Develop a working knowledge of the five domains of CISA. CONTENT Course Outline Domain 1 — Information System Auditing Process Plan an audit to determine whether information systems are protected, controlled, and provide value to the organization. Conduct an audit in accordance with IS audit standards and a risk-based IS audit strategy. Communicate audit progress, findings, results and recommendations to stakeholders. Conduct audit follow-up to evaluate whether risk has been sufficiently addressed. Evaluate IT management and monitoring of controls. Utilize data analytics tools to streamline audit processes. Provide consulting services and guidance to the organization in order to improve the quality and control of information systems. Identify opportunities for process improvement in the organization’s IT policies and practices. Domain 2 – Governance & Management of IT Evaluate the IT strategy for alignment with the organization’s strategies and objectives. Evaluate the effectiveness of IT governance structure and IT organizational structure. Evaluate the organization’s management of IT policies and practices. Evaluate the organization’s IT policies and practices for compliance with regulatory and legal requirements. Evaluate IT resource and portfolio management for alignment with the organization’s strategies and objectives. Evaluate the organization’s risk management policies and practices. Evaluate IT management and monitoring of controls. Evaluate the monitoring and reporting of IT key performance indicators (KPIs). Evaluate whether IT supplier selection and contract management processes align with business requirements. Evaluate whether IT service management practices align with business requirements. Conduct periodic review of information systems and enterprise architecture. Evaluate data governance policies and practices. Evaluate the information security program to determine its effectiveness and alignment with the organization’s strategies and objectives. Evaluate potential opportunities and threats associated with emerging technologies, regulations, and industry practices Domain 3 – Information Systems Acquisition, Development, & Implementation Evaluate whether the business case for proposed changes to information systems meet business objectives. Evaluate the organization’s project management policies and practices. Evaluate controls at all stages of the information systems development life cycle. Evaluate the readiness of information systems for implementation and migration into production. Conduct post-implementation review of systems to determine whether project deliverables, controls and requirements are met. Evaluate change, configuration, release, and patch management policies and practices. Domain 4 – Information Systems Operations and Business Resilience Evaluate the organization’s ability to continue business operations. Evaluate whether IT service management practices align with business requirements. Conduct periodic review of information systems and enterprise architecture. Evaluate IT operations to determine whether they are controlled effectively and continue to support the organization’s objectives. Evaluate IT maintenance practices to determine whether they are controlled effectively and continue to support the organization’s objectives. Evaluate database management practices. Evaluate data governance policies and practices. Evaluate problem and incident management policies and practices. Evaluate change, configuration, release, and patch management policies and practices. Evaluate end-user computing to determine whether the processes are effectively controlled. Domain 5 – Protection of Information Assets Conduct audit in accordance with IS audit standards and a risk-based IS audit strategy. Evaluate problem and incident management policies and practices. Evaluate the organization’s information security and privacy policies and practices. Evaluate physical and environmental controls to determine whether information assets are adequately safeguarded. Evaluate logical security controls to verify the confidentiality, integrity, and availability of information. Evaluate data classification practices for alignment with the organization’s policies and applicable external requirements. Evaluate policies and practices related to asset life cycle management. Evaluate the information security program to determine its effectiveness and alignment with the organization’s strategies and objectives. Perform technical security testing to identify potential threats and vulnerabilities. Evaluate potential opportunities and threats associated with emerging technologies, regulations, and industry practices.

OVERVIEW Prepare to obtain the Certified Information Security Manager® (CISM) certification and be recognized among the world’s most-qualified information security management professionals. The CISM Online Review Course provides online, on-demand instruction and is ideal for preparing you for the CISM certification exam. The course covers all four of the CISM domains, and each section corresponds directly to the CISM Exam Content Outline. It uses proven instructional design techniques, incorporating video, interactive eLearning modules, downloadable job aids, case study activities and a practice exam.  Learners will have access to the course for 6 months from date of purchase and will earn 20 CPE upon completion. This course has a seat time of approximately 16 hours and is accessed via the Learning Access tab of your MyISACA dashboard.  Please note : The exam is not included with the course but can be purchased seperately. Included Materials: Video Interactive Content Downloadable handouts  Practice exam OBJECTIVES At the completion of this course you will be able to: Explain the relationship between executive leadership, enterprise governance and information security governance.  Outline the components used to build an information security strategy.  Explain how the risk assessment process influences the information security strategy.  Articulate the process and requirements used to develop an effective information risk response strategy.  Describe the components of an effective information security program.  Explain the process to build and maintain an enterprise information security program.  Outline techniques used to assess the enterprise’s ability and readiness to manage an information security incident.  Outline methods to measure and improve response and recovery capabilities.  CONTENT Introduction Welcome video Domain 1 – Information Security Governance  Describe the role of governance in creating value for the enterprise.  Explain the importance of information security governance in the context of overall enterprise governance.  Describe the influence of enterprise leadership, structure and culture on the effectiveness of an information security strategy.  Identify the relevant legal, regulatory and contractual requirements that impact the enterprise.  Describe the effects of the information security strategy on enterprise risk management.  Evaluate the common frameworks and standards used to govern an information security strategy.  Explain why metrics are critical in developing and evaluating the information security strategy.  Domain 2 – Information Security Risk Management Apply risk assessment strategies to reduce the impact of information security risk.  Assess the types of threats faced by the enterprise.  Explain how security control baselines affect vulnerability and control deficiency analysis.  Differentiate between application of risk treatment types from an information security perspective.  Describe the influence of risk and control ownership on the information security program.  Outline the process of monitoring and reporting information security risk.  Domain 3 – Information Security Program  Outline the components and resources used to build an information security program.  Distinguish between common IS standards and frameworks available to build an information security program.  Explain how to align IS policies, procedures and guidelines with the needs of the enterprise.  Describe the process of defining an IS program road map.  Outline key IS program metrics used to track and report progress to senior management.  Explain how to manage the IS program using controls.  Create a strategy to enhance awareness and knowledge of the information security program.  Describe the process of integrating the security program with IT operations and third-party providers.  Communicate key IS program information to relevant stakeholders.  Domain 4 – Incident Management Distinguish between incident management and incident response  Outline the requirements and procedures necessary to develop an incident response plan.  Identify techniques used to classify or categorize incidents.  Outline the types of roles and responsibilities required for an effective incident management and response team  Distinguish between the types of incident management tools and technologies available to an enterprise.  Describe the processes and methods used to investigate, evaluate and contain an incident.  Identify the types of communications and notifications used to inform key stakeholders of incidents and tests.  Outline the processes and procedures used to eradicate and recover from incidents.  Describe the requirements and benefits of documenting events.  Explain the relationship between business impact, continuity and incident response.  Describe the processes and outcomes related to disaster recovery.  Explain the impact of metrics and testing when evaluating the incident response plan.  CISM Practice Exam 80 questions

Victa en TOPdesk hebben een jarenlange bewezen succesvolle samenwerking. Gezamenlijk wordt er veel tijd en energie gestoken in nieuwe ontwikkelingen en innovaties aangaande TOPdesk Analytics. Een gloednieuw dashboard is het resultaat die we je tijdens dit Webinar graag demonstreren.  Interesse in dit product ? Kijk dan ook op https://www.victa.nl/topdesk-qlik-sense/ voor meer informayie. 

OVERVIEW The Implementing Cisco Collaboration Cloud and Edge Solutions (CLCEI) course provides you with knowledge of Cisco® Expressway Series solutions that enable business-to-business (B2B) calls, Cisco Mobile, remote access, authentication options and additional Cisco Expressway Series features.  This course also provides details about the Webex solution, and the benefits of hybrid integrations between Cisco on-premises solutions and Webex Meetings in the cloud. This course is worth 40 Continuing Education (CE) credits towards recertification. OBJECTIVES After completing this course you should be able to: Describe the Cisco Expressway Core features and functionality within the collaboration architecture  Describe the Cisco Expressway Core additional features  Configure and troubleshoot Cisco Unified Communications Manager and Cisco Expressway Series integration  Configure and troubleshoot Cisco Collaboration solutions for Business-to-Business calls  Describe how to secure B2B communication with Cisco Expressway Series  Describe the MRA feature  Describe the Cisco Expressway MRA security and integration options, including integration with Cisco Unity Connection and Cisco Unified Communications Manager IM and Presence Service  Describe deployment models for Cisco Webex cloud-based collaboration, management of users and sites within Webex Control Hub, and other administrative tasks.   Describe Cisco Webex Hybrid Services  CONTENT Cisco Expressway Series Cisco Expressway Series Architecture Describing SIP and H.323 in the Cisco Expressway Series Interworking in the Cisco Expressway Series Zones Digit String Manipulation Search Rules Transforms Troubleshooting Call Processing on the Cisco Expressway Series Backup and Restore Cisco Expressway Additional Features Bandwidth Management Hardening Local Endpoint Registrations Cisco Expressway Security and Clustering Features Cisco Unified Communications Manager and Cisco Expressway Series Cisco Unified Communications Manager and Cisco Expressway-C Integration Overview Call Flow Dial Plan Overview Call Policy Troubleshooting Options for Cisco Unified Communication Manager and Cisco Expressway-C Integration Cisco Collaboration Solutions for Business-to-Business Describing Supported Services for B2B Collaboration Describing Prerequisites for Business to Business Collaboration Call Flow Including Cisco Unified Communications Manager Endpoints Network Address Translation in a Collaboration Environment Cisco Expressway Series B2B Call Troubleshooting B2B Communications Security Firewall Traversal Certificates Securing Media Securing Media Between Cisco Unified Communications Manager and Cisco Expressway Series Toll Fraud Prevention Mobile and Remote Access Configuration Prerequisites for Mobile and Remote Access Service Discovery Expressway Settings for MRA Certificates HTTP Proxy Cisco Jabber Registration Procedure Cisco Jabber Registration in Hybrid Deployment Cisco Jabber Configuration File MRA Troubleshooting Mobile and Remote Access Integration and Security Secure Cisco Unified Communications Integration Cisco Unity Connection Integration Cisco MRA Access Control Options Additional Cisco MRA Features Cisco Webex Control Hub and User Import Cisco Webex Overview Administrative Functions in Webex Control Hub User Management Integration Cisco Webex Hybrid Services Hybrid Services Connectors Cisco Edge Audio Cisco Webex Edge Video Mesh Cisco Edge Connect Cisco Edge for Devices Labs Discovery Lab 1: Deploy Virtualized Cisco Expressway Discovery Lab 2: Perform the Initial Cisco Expressway Series Configuration Discovery Lab 3: Register Endpoints on Cisco Expressway Series Discovery Lab 4: Call Search History and Registrations Discovery Lab 5: Troubleshooting Tools Discovery Lab 6; Configure Cisco Expressway Series Bandwidth Management and Registration Restrictions Discovery Lab 7: Troubleshoot Cisco Expressway Series Endpoint Registration and Local Dial Plan Discovery Lab 8: Configure Cisco Expressway Series Security Features Discovery Lab 9: Configure Cisco Unified Communications Manager to Connect with Cisco Expressway-C Discovery Lab 10: Troubleshoot Cisco Unified Communications Manager and Cisco Expressway Series Integration Discovery Lab 11: Configure Cisco Unified Communications Manager and Cisco Expressway Series Integration Discovery Lab 12: Implement a B2B Cisco Collaboration Solution Discovery Lab 13: Troubleshoot B2B Calls on the Cisco Expressway Series Discovery Lab 14: Secure a B2B Cisco Collaboration Communication Discovery Lab 15: Configure MRA on the Cisco Expressway Series Discovery Lab 16: Troubleshoot MRA on the Cisco Expressway Series Discovery Lab 17: Configure MRA with Additional Application Integrations Discovery Lab 18: Prepare for Cisco Webex Teams Integration

OVERVIEW The Implementing Cisco Collaboration Core Technologies (CLCOR) course will provide you with the knowledge and skills needed to implement and deploy core collaboration and networking technologies, including infrastructure and design, protocols, codecs, and endpoints,Call Control, QoS, and additional Cisco collaboration applications. Completion of this course is worth 64 Continuing Education Credits OBJECTIVES After completing this course, you should be able to: Describe the Cisco Collaboration solutions architecture. Compare the IP Phone signaling protocols of SIP, H323, and SCCP. Integrate and troubleshoot Cisco Unified Communications Manager with LDAP for user synchronization and user authentication. Implement Cisco Unified Communications Manager provisioning features. Describe the different codecs and how they are used to transform analog voice into digital streams. Describe a dial plan and explain call routing in Cisco Unified Communications Manager. Describe cloud calling using the on-premises local gateway option through Webex by Cisco. Configure calling privileges in Cisco Unified Communications Manager. Implement toll fraud prevention. Implement globalized call routing within a Cisco Unified Communications Manager cluster. Implement and troubleshoot media resources in Cisco Unified Communications Manager. Implement and troubleshoot Webex Calling dial plan features in a hybrid environment. Deploy the Webex app in a Cisco Unified Communications Manager environment and migrate from Cisco Jabber to Webex app. Configure and troubleshoot Cisco Unity Connection integration. Configure and troubleshoot Cisco Unity Connection call handlers. Describe how MRA is used to allow endpoints to work from outside the company. Analyze traffic patterns and quality issues in converged IP networks supporting voice, video, and data traffic. Define QoS and its models. Implement classification and marking. Configure classification and marking options on Cisco Catalyst switches. CONTENT Cisco Collaboration Solutions Architecture Overview of Cisco Collaboration Solutions Architecture Collaboration Deployment Models Licensing High Availability Capacity Planning Security Requirements SIP OAuth on Cisco UCM Webex Control Hub Features  Disaster Recovery Dial Plan IP Network Protocols Codecs Call Signaling over IP Networks IP Phone Initialization Single Site On-Cluster Calling Single Site On-Cluster Call Setup Troubleshooting Describe the Call Setup and Teardown Process Describe SIP Call Signaling for Call Setup and Teardown Compare the Call Control Protocols Describe DTMF Signaling over IP Networks Cisco Unified Communications Manager LDAP Overview of LDAP Integration in Cisco Unified Communications Manager Options for Importing and Synchronizing Cisco Unified Communications Manager Users in Webex LDAP Synchronization in Cisco Unified Communications Manager LDAP Authentication in Cisco Unified Communications Manager LDAP Attribute Mapping in Cisco Unified Communications Manager LDAP Considerations in Cisco Unified Communications Manager Access Control Groups in Cisco Unified Communications Manager Feature Group Templates in Cisco Unified Communications Manager Directory Connector Cisco Unified Communications Manager Provisioning Features Overview of Provisioning Options Self-Provisioning Prerequisites Self-Provisioning Components Self-Provisioning Authentication Modes Batch-Provisioning Tools Exploring Codecs Define Codecs Compare Audio Codecs Compare Video Codecs Evaluate the Effects of Encryption on Codecs Describing Call Admission Control Dial Plans and Endpoint Addressing Dial Plan Overview Dal Plan Components and Their Functions EndPoint Addressing Overview of Cisco Unified Communications Manager Call Routing Cisco Unified Communications Manager Call-Routing Logic Address Methods and Digit Analysis Variable-Length Patterns, Overlapping Patterns and Urgent Priority Cloud Calling Hybrid Local Gateway Overview of Webex Calling Using Local Gateway Routers Used for Local Gateway Scenarios Using Local Gateway Calling Privileges in Cisco Unified Communications Manager Calling Privileges Overview Partitions and CSSs Partition and CSS Considerations Time-of-Day Routing Client Matter Codes and Forced Authorization Codes Toll Fraud Prevention Toll Fraud Prevention Overview Cisco Unified Communications Manager CoS for Toll Fraud Prevention Globalized Call Routing Overview of Multisite Dial Plans Globalized Call Routing Overview Globalized Call Routing Number Formats Globalization of Localized Call Ingress Localization During Call Egress  Media Resources in Cisco Unified Communications Manager Media Resources Overview in Cisco Unified Communications Manager Media Resource Selection and Access Control in Cisco Unified Communications Manager Describing the Annunciator Feature Describing Unicast and Multicast MOH Characteristics Audio and Video Conference Bridge Devices Audio and Video Conference Bridge Integration Options MTP and Transcoder Devices MTP and Transcoder Requirements Webex Calling Dial Plan Features Webex Control Hub Settings Router Configuration Testing and Troubleshooting Webex Calling Deploy Webex App Migrating Cisco Jabber Users with Cisco Webex Cloud-Connected UC Migrating Cisco Jabber Clients to Cisco Webex Cisco Unity Connection Integration Overview of Cisco Unity Connection Integration SIP Integration Typcial Integration Mistakes Integration Considerations Cisco Unity Connection Call Handlers Call Handler Overview System Call Handler Caller Input Operator Call Handler Goodbye Call Handler Directory Handler Interview Handler Collaboration Edge Architecture Describe Collaboration Edge ( Expressway -C and Expressway -E) Describe Supported Services for B2B Collaboration Describe Prerequisites for Mobile and Remote Access Describe Service Discovery Explore Expressway Settings for MRA Describe Cisco Unified Border Element (CUBE) Device Onboarding Using Activation Codes Quality Issues in Converged Networks Converged Networks Available Bandwidth Components of Network Delay End-to-End Delay Calculations Jitter Packet Loss Defining QoS and QoS Models QoS Defined Network Traffic Indentification Divide Network Traffic into Classes and Define Policies QoS Mechanisms QoS Models DSCP Encoding Expedited Forwarding and Assured Forwarding Class Selector Classification and Marking Classification and Marking Overview Classification and Marking at the Network and Data Link Layers QoS Service Class Cisco Marking Recommendations QoS Markings in a SIP Call Flow MQC Classification and Marking Options Classification and Marking on Cisco Catalyst Switches Overview of QoS Trust Boundaries Ingress QoS Models QoS Marking and Table Maps Internal DSCP Labs Use Certificates Configure IP Network Protocols Configure and Troubleshoot Collaboration Endpoints Troubleshoot Calling Issues Configure and Troubleshoot LDAP Integration in Cisco Unified Communications Manager Deploy an IP Phone Through Auto and Manual Registration Configure Self-Provisioning Configure Batch Provisioning Configure Regions and Locations Implement Endpoint Addressing and Call Routing Configure Calling Privileges Implement Toll Fraud Prevention on Cisco Unified Communications Manager Implement Globalized Call Routing Configure the Integration between Unity Connection and Cisco Unified CM Manage Unity Connection Users Configure QoS

OVERVIEW OBJECTIVES CONTENT