Opleidingen

OVERVIEW Learn how to configure Red Hat Satellite 6 to deploy and manage Red Hat Enterprise Linux systems and software Red Hat Satellite 6 Administration (RH403) is a lab-based course that explores the concepts and methods necessary for successful large-scale management of Red Hat® Enterprise Linux® systems. You will learn how to configure Red Hat Satellite 6 on a server and populate it with software packages. You will use Red Hat Satellite to manage the software development life cycle of a subscribed host and its configuration, and learn how to provision hosts integrated with software and Ansible® configuration management upon deployment. This course is based on Red Hat Enterprise Linux 8 and Red Hat Satellite 6.6. The course is targeted for Senior Red Hat Enterprise Linux system administrators responsible for the management of multiple servers and is recommended preparation for the following courses: Red Hat Certified Specialist in Deployment and Systems Management exam (EX403) Red Hat Certified Specialist in Deployment and Systems Management exam (EX405) Red Hat Certified Specialist in Ansible Automation exam (EX407) OBJECTIVES This course develops the skills needed to more efficiently design, configure, test, and deploy computer systems within an organization. The ability to apply these skills will reduce unexpected downtime of systems and facilitate more efficient deployment of new systems, applications, and features. As a result of attending this course, you should be able to employ the software development life cycle process to plan, create, test, and provision host systems within an organization.   Following completion of this course you will have the knowledge and experience to: Verify a Red Hat Satellite 6.6 installation. Regulate Red Hat Satellite with organizations, locations, users, and roles. Manage software with Red Hat Satellite environments and content views. Use Red Hat Satellite to configure hosts with Ansible playbooks and roles. Provision hosts with integrated software and configuration management. Implement Metal-as-a-Service (MaaS) with Satellite discovery and provisioning of unprovisioned hosts. CONTENT Plan and deploy Red Hat Satellite Plan a Red Hat Satellite deployment, then perform installation and initial configuration of Red Hat Satellite servers. Manage software life cycles Create and manage Red Hat software deployment life cycle environments. Register hosts Register and configure your Red Hat Enterprise Linux systems to use Red Hat Satellite, then organize those systems into groups for easier management. Deploy software to hosts Manage software deployment to registered hosts of your Red Hat Satellite infrastructure and practice managing environment paths, life cycle environments, and content views. Deploy custom software Create, manage, and deploy custom software products and repositories. Deploy Satellite capsule servers Perform installation and initial configuration of Red Hat Satellite capsule servers as components of a deployment plan. Run remote execution commands Configure the ability to run ad hoc and scheduled tasks on managed hosts using a variety of configuration management tools. Provision hosts Configure Satellite server for host deployment and perform host provisioning. Manage Red Hat Satellite using the API Integrate Red Hat Satellite functionality with custom scripts or external applications that access the API over HTTP. Plan a Red Hat Satellite deployment on a cloud platform Plan a Red Hat Satellite deployment, installation, and initial configuration on a cloud platform. Perform Red Hat Satellite server maintenance Manage Red Hat Satellite for security, recoverability, and growth. Comprehensive review Install and configure Red Hat Satellite Server, then provision content hosts.

OVERVIEW Manage security of Red Hat Enterprise Linux systems deployed in bare-metal, virtual, and cloud environments Red Hat Security: Linux in Physical, Virtual, and Cloud (RH415) is designed for security administrators and system administrators who need to manage the secure operation of servers running Red Hat® Enterprise Linux®, whether deployed on physical hardware, as virtual machines, or as cloud instances. This course is based on Red Hat Enterprise Linux 7.5, Red Hat Satellite 6.3, Red Hat Ansible® Engine 2.5, Red Hat Ansible Tower 3.2, and Red Hat Insights. Maintaining security of computing systems is a process of managing risk through the implementation of processes and standards backed by technologies and tools. In this course, you will learn about resources that can be used to help you implement and comply with your security requirements. The course is amied at System administrators, IT security administrators, IT security engineers, and other professionals responsible for designing, implementing, maintaining, and managing the security of Red Hat Enterprise Linux systems and ensuring their compliance with the organization's security policies. This course will help you prepare for the Red Hat Certified Specialist in Security: Linux exam (EX415). Alternately you could attend the RH416 that also includes the EX415 exam. OBJECTIVES This course is intended to develop the skills needed to reduce security risk and to implement, manage, and remediate compliance and security issues in an efficient way. The tools and techniques can be used to ensure that systems are configured and deployed in a way that meets security and compliance needs, that they continue to meet those requirements, and that all existing systems can be audited and remediations and changes consistently applied as those requirements are revised. This flexibility may help the business to efficiently reduce risk of security breaches, which have a high cost in business disruption, brand erosion, loss of customer and shareholder trust, and financial costs for post-incident remediation. In addition, the organization may be able to use the tools in this course to help demonstrate that compliance requirements set by customers, auditors, or other stakeholders have been met. As a result of attending this course, you should be able to use security technologies included in Red Hat Enterprise Linux to manage security risk and help meet compliance requirements. After completing this course you  should be able to demonstrate these skills: Analyze and remediate system compliance using OpenSCAP and SCAP Workbench, employing and customizing baseline policy content provided with Red Hat Enterprise Linux. Monitor security-relevant activity on your systems with the kernel's audit infrastructure. Explain and implement advanced SELinux techniques to restrict access by users, processes, and virtual machines. Confirm the integrity of files and their permissions with AIDE. Prevent unauthorized USB devices from being used with USBGuard. Protect data at rest but provide secure automatic decryption at boot using NBDE. Proactively identify risks and misconfigurations of systems and remediate them with Red Hat Insights. Analyze and remediate compliance at scale with OpenSCAP, Red Hat Insights, Red Hat Satellite, and Red Hat Ansible Tower. CONTENT Manage security and risk Define strategies to manage security on Red Hat Enterprise Linux servers. Automate configuration and remediation with Ansible Remediate configuration and security issues with Ansible Playbooks. Protect data with LUKS and NBDE Encrypt data on storage devices with LUKS and use NBDE to manage automatic decryption when servers are booted. Restrict USB device access Protect system from rogue USB device access with USBGuard. Control authentication with PAM Manage authentication, authorization, session settings, and password controls by configuring pluggable authentication modules (PAMs). Record system events with audit Record and inspect system events relevant to security, using the Linux kernel's audit subsystem and supporting tools. Monitor file system changes Detect and analyze changes to a server's file systems and their contents using AIDE. Mitigate risk with SELinux Improve security and confinement between processes by using SELinux and advanced SELinux techniques and analyses. Manage compliance with OpenSCAP Evaluate and remediate a server's compliance with security policies by using OpenSCAP. Automate compliance with Red Hat Satellite Automate and scale your ability to perform OpenSCAP checks and remediate compliance issues using Red Hat Satellite. Analyze and remediate issues with Red Hat Insights Identify, detect, and correct common issues and security vulnerabilities with Red Hat Enterprise Linux systems by using Red Hat Insights. Perform a comprehensive review Review the content covered in this course by completing hands-on review exercises.

OVERVIEW Red Hat® Enterprise Clustering and Storage Management (RH436) provides intensive, hands-on experience with storage management, Red Hat Cluster Suite, and the shared storage technology delivered by Red Hat Global File System (GFS). Created for Senior Linux® system administrators, this 4-day course has a strong emphasis on lab-based activities. At the end of the course, students will have learned to deploy and manage shared storage and server clusters that provide highly available network services to a mission-critical enterprise environment. OBJECTIVES Review of Red Hat enterprise clustering and storage management technologies Linux dynamic device management iSCSI Advanced software RAID Device mapper and multipathing CONTENT

OVERVIEW Red Hat® Enterprise Performance Tuning is designed to teach senior Linux® system administrators the methodology of performance tuning for Red Hat Enterprise Linux. This course discusses system architecture with an emphasis on understanding the implications of system architecture on system performance, methods for testing the effects of performance adjustments, open source benchmarking utilities, methods for analyzing system and networking performance, and tuning configurations for specific application loads. A Red Hat Certified Engineer (RHCE®) who successfully completes this course is prepared to take the Red Hat Enterprise Performance Tuning Expertise Exam (EX442). OBJECTIVES CONTENT Introduction to performance tuning Understand the basic principles of performance tuning and analysis. Collecting, graphing, and interpreting data Gain proficiency in using basic analysis tools and in evaluating data. General tuning Learn basic tuning theory and mechanisms used to tune the system. Hardware profiling Understand and analyze hardware. Software profiling Analyze CPU and memory performance of applications. Mail server tuning Learn about basic storage tuning using an email server as an example. Large memory workload tuning Understand memory management and tuning. HPC workload tuning Understand tuning for CPU-bound applications. File server tuning Understand storage and network tuning in the context of a file server application. Database server tuning Tune memory and network performance using a database application as an example. Power usage tuning Tune systems with power consumption in mind. Virtualization tuning Tune ’host’ and ’guest’ for efficient virtualization.

OVERVIEW Virtueel en Klassikaal™ Virtueel en Klassikaal™ is een eenvoudig leerconcept en biedt een flexibele oplossing voor het volgen van een klassikale training. Met Virtueel en Klassikaal™ kunt u zelf beslissen of u een klassikale training virtueel (vanuit huis of kantoor )of fysiek op locatie wilt volgen. De keuze is aan u! Cursisten die virtueel deelnemen aan de training ontvangen voor aanvang van de training alle benodigde informatie om de training te kunnen volgen. OBJECTIVES This course will prepare you to: Outline the functions and innovations of S/4 HANA R&D Engineering Work with the simplified layout for master data AUDIENCE - Application Consultant - Business Process Architect - Business Process Owner / Team Lead / Power User - Program/Project Manager - Solution Architect CONTENT Master Data: Product Master Documents Characteristics and Classes Work Centers and Routings Product Structures and Synchronization Material BOM: Manage Material BOMs Software in Material BOMs BOM Versioning Evaluations Change Management: Change Master Change Record Engineering Control Center Advanced Variant Configuration

OVERVIEW The Designing Cisco Security Infrastructure (SDSI) course teaches you about security architecture design, including secure infrastructure, applications, risk, events, requirements, artificial intelligence (AI), automation, and DevSecOps. This training prepares you for the 300-745 SDSI exam. If passed, you earn the Cisco Certified Specialist – Designing Cisco Security Infrastructure certification and satisfy the concentration exam requirement for the Cisco Certified Network Professional (CCNP) Security certification. This Course is worth 41 Continuing Education (CE) credits toward recertification. OBJECTIVES After completing this course you should be able to: Identify and explain the fundamental concepts of security architecture and how they support the design, building, and maintenance of a secure infrastructure  Identify the layers of security infrastructure, core security technologies, and infrastructure concepts  Explain how security designs principles contribute to secure infrastructure  Identify and discuss security design and management frameworks that can be used for infrastructure security design  Explain the importance of and methods for enforcement of regulatory compliance in security design  Identify tools that enable detection and response to infrastructure security incidents  Explain various strategies that can be implemented to modify traditional security architectures to meet the technical requirements of modern enterprise networks  Implement secure network access methods, such as 802.1X, MAC Authentication Bypass (MAB), and web-based authentication  Describe security technologies that can be applied to enterprise Wide Area Network (WAN) connections  Compare methods to secure network management and control plane traffic  Compare the differences between traditional firewalls and next-gen firewalls (NGFWs) and identify the advanced features that NGFWs provide  Explain how web application firewalls (WAFs) secure web applications from threats  Describe the key features and best practices for deploying intrusion detection system (IDS) and intrusion prevention system (IPS) as part of the enterprise infrastructure security design  Explain how endpoints and services in cloud-native or microservice environments can be protected with host-based or distributed firewalls  Discuss security technologies that address application data and data that is in transit  Identify several security solutions for cloud-native applications, microservices, and containers  Explain how technology advancements allow for improvements in today’s infrastructure security  Identify tools that enable detection and response to infrastructure security incidents  Describe frameworks and controls to access and mitigate security risks for infrastructure  Explain how to make security adjustments following a security incident  Identify DevSecOps integrations that improve security management and response  Discuss how to ensure that automated services are secure  Discuss how AI can aid in threat detection and response  CONTENT Definition and Purpose of Security Architecture Security Architecture Components Security Architecture in Modern Networks Security Design Principles  Components of Security Infrastructure Layers of Security Infrastructure - Physical, Network, Application and Data Infrastructure Components: Endpoints, Servers, Data Centers, and Cloud Environments Core Security Technologies: Firewalls, VPNs,IDS/IPS, IAM Design Case Study Activity 1: Migrating from Flat Network to Layered Design Design case Study Activity 2: Securing the Edge Design case Study Activity 3: Micro-Segmentation in a Virtualized Data Center Design case Study Activity 4: Endpoint and Insider Threat Response Security Design Principles Least Priviliges and Zero Trust Models Defense-in-Depth and Multi-Layered Security Approaches Role of Encryption and Data -Integrity in Security Design Security by Design: Embedding Security in Development Lifecycles Visibility and Observability of Network Activities Design Practice Activity 1: Zero Trust Migration for Legacy Access Control Design Practice Activity 2: Designing Resilient Perimeter Security for a Hybrid Workforce Design Practice Activity 3: Secure Segmentation of Multi-Tenant Infrastructure Design Practice Activity 4: Business Continuity-Driven Security Design Security and Design Frameworks MITRE ATTACK Framework Common Attach Pattern Enumeration and Classification NIST Risk Management Framework Secure Access Service Edge (SASE) Compliance and Regulatory Requirements Regulatory Compliance for Security Designs Compliance Monitoring and Reporting Security Approaches to Protect Against Threats Endpoint and Client Device Security Identity and Access Management Two-Factor Authentication and Cisco Duo Email Security Passwordless Authentication Technologies and Methodolgies Passwordless Authentication User Experience Passwordless Authentication Implementation Changes Modify the Security Architecture to Meet Technical Requirements Security for Hybrid Workers IoT Security Design SaaS Security Multi-Cloud and Data Center Security Design Practice Activity 1: Securing IoT Infrastructure in a Smart Hospital Design Practice Activity 2: Building a Secure SaaS Ecosystem Design Practice Activity 3: Designing Resilient Security in a Multi-Cloud Environment Network Access Security 802.1x for User Authentication for Network Access MAC Authentication Bypass Web Authentication Design Practice Activity 1: Phased Deployment of 802.1X in a Multi-Building Enterprise Design Practice Activity 2: MAB and Endpoint Profiling in an IoT-Rich Environment Design Practice Activity 3: WebAuth for BYOD and Guest Access at a Financial Institution VPN and Tunneling Solutions Remote Access VPN WAN Connectivity SD-WAN and Cloud-Based Tunnels Design Practice Activity 1: Zero Trust Remote Access for Financial Analysts Design Practice Activity 2: Hybrid WAN Architecture for a Global Retail Chain Design Practice Activity 3: Cloud-First Strategy with Secure SD-WAN Secure Infrastructure Management and Control Planes Network Management Security Control Plane Security Nextgen Firewalls Differences between Traditional Firewalls and NGFWs NGFW Advanced Features Firewalls in SaaS Security Firewalls in Multi-Cloud and Data Center Security Design Practice Activity 1: Redefining Branch Security with Application Control Design Practice Activity 2: Malware Lateral Movement in the Data Center Design Practice Activity 3: Enforcing Compliance and Secure Segmentation Web Application Firewall (WAF) Web Application Security Integration of Web Application and API Protection (WAAP) with Content Delivery Networks (CDNs)   IPS/IDS Deployment Key Features of IDS/IPS IDS/IPS Best Practices Design Practice Activity 1: IPS Design for a Financial Data Center Design Practice Activity 2: IPS Protection of Hybrid Workforce Design Practice Activity 3: Securing OT with IDS/IPS Host-Based Firewalls and Distributed Firewalls Host-Based Firewalls for Securing Endpoints Distributed Firewalls for Cloud-Native and Microservice Environments Security Solutions Based on Application and Flow Data Application Firewalls SSL Offloading and Decryption Data Loss Prevention (DLP) Endpoint Security in Application Data Flows DNS Security Design Practice Activity 1: Designing a Resilient Web Application Firewall Design Practice Activity 2: Secure SSL/TLS DecryptionStrategy in a Privacy-Concious Environment Design Practice Activity 3: DNS-Layer Defense Integration in a Remote and Hybrid Workforce Design Practice Activity 4: Designing Endpoint Security Enforcement in a Hybrid Enterprise Security for Cloud-Native Applications, Microservices, and Containers Microservices Security and Segmentation Containers and Kubernetes Security Serverless Architecture  Emerging Technologies in Application Security Generative Artificial Intelligence and Machine Learning Quantum Computing Security Impacts SOC Tools for Incident Handling and Response SIEM Solutions Design SOAR Systems Network Observability eBPF ( extended Berkeley Packet Filters) Modify Design to Mitigate Risk Risk Management Frameworks Compensating Controls SAFE Framework Design Practice Activity 1: Selecting a Framework for a Government Contractor Network Design Practice Activity 2: Designing Security Capabilities Using Cisco SAFE Framework Design Practice Activity 3: Implementing Compensating Controls in a Legacy Banking System Incident-Driven Security Adjustments Post-Incident Response and Recovery Design Practice Activity 1: Recovery from Advanced Persisitent Threat (APT) Design Practice Activity 2: Designing a DDoS Recovery and Resilience Strategy for Internet Edge Design Practice Activity 3: Mitigating and Recovering from a Framework Design Practice Activity 4: Incident response Design for Insider-Driven data Breach DevSecOps Integration Continuous Integration/Continuous Delivery (CI/CD) Pipeline Security Automated Vulnerability Scanning API Security Secure Automated Workflows and Pipelines Automated Security Testing for Continuous Compliance Integrating DevSecOps Workflows with AI/ML for Enhanced Security Posture Security Design and AI Task 1: Threat Modeling with AI Assistance Security Design and AI Task 2: Secure Architecture Review Security Design and AI Task 3: AI-Assisted Secure Code Review Security Design and AI Task 4: Designing a Secure Login System Security Design and AI Task 5: Writing a Security Policy with ChatGPT Security Design and AI Task 6: AI as an Adversary: Red Team Scenario Design Security Design and AI Task 7: Privacy by Design - Data Flow Analysis Security Design and AI Task 8: Risk Assessment Report with AI Help Security Design and AI Task 9: Designing Security Awareness Campaign Security Design and AI Task 10: Incident Response Plan Simulation AI’s Role in Securing Infrastructure AI-Driven Threat Detection and Response Infrastructure as Code (IAC) for Security Security Telemetry and Monitoring Labs: There are no labs associated with this training.

OVERVIEW Stay ahead of evolving threats with Cisco Security Fundamentals (SECFNDU), a course crafted for IT professionals who want actionable skills in modern network security. Delve into the latest technologies, including virtualization, next-generation firewalls, VPNs, and endpoint protection. You’ll master the deployment and management of Cisco Secure Firewall ASA and Umbrella, learning how to implement robust security policies and respond to real-world attack scenarios. SECFNDU goes beyond theory, offering practical insights into attack vectors, reconnaissance techniques, and infrastructure protection. By the end of the course, you’ll be ready to secure networks, endpoints, and cloud environments with confidence—making you an indispensable asset to any organization. This course is worth 24 Continuing Education (CE) Credits   OBJECTIVES After completing this course you should be able to: Understand and articulate the principles of defense-in-depth and the attack continuum in modern network security. Identify and describe the functions of key network security technologies, including firewalls, intrusion prevention systems, and malware protection. Analyze common TCP/IP and network application attacks, recognizing vulnerabilities and attack vectors. Implement foundational network infrastructure protection strategies, including control, management, and data plane security controls. Deploy and configure Cisco Secure Firewall ASA and Secure Endpoint solutions to enhance organizational security. Explain the concepts and applications of VPN technologies and cryptography in securing communications. AUDIENCE Anyone looking to build on the security concepts covered at CCNA level. CERTIFICATION Recommended as preparation for the following exam: There is no exam currently linked to this course. CONTENT Network Security Technologies Defense-in-Depth Strategy Defending Across the Attack Continuum Network Segmentation and Virtualization Overview Stateful Firewall Overview Cisco IOS Zone-Based Policy Firewall Overview Security Intelligence Overview Threat Information Standardization Network-Based Malware Protection Overview IPS Overview Next Generation Firewall Overview Email Content Security Overview Web Content Security Overview Threat Analytic Systems Overview DNS Security Overview Authentication, Authorization, and Accounting Overview Identity and Access Management Overview Virtual Private Network (VPN) Technology Overview Network Security Device Form Factors Overview Describe Common TCP/IP Attacks Legacy TCP/IP Vulnerabilities IP Vulnerabilities ICMP Vulnerabilities UDP Vulnerabilities Attack Surface and Attack Vectors Reconnaissance Attacks Access Attacks Man-In-The-Middle Attacks Denial of Service and Distributed Denial of Service Attacks Reflection and Amplification Attacks Spoofing Attacks DHCP Attacks Describe Common Network Application Attacks Password Attacks DNS Tunneling Web-Based Attacks HTTP 302 Cushioning Command Injections SQL Injections Cross-Site Scripting and Request Forgery Email-Based Attacks Network Infrastructure Protection Network Device Planes Control Plane Security Controls Management Plane Security Controls Network Telemetry Layer 2 Data Plane Security Controls Layer 3 Data Plane Security Controls Cisco Secure Firewall ASA Deployment Cisco Secure Firewall ASA Deployment Types Cisco Secure Firewall ASA Interface Security Levels Cisco Secure Firewall ASA Objects and Object Groups Network Address Translation Cisco Secure Firewall ASA Interface ACLs Cisco Secure Firewall ASA Global ACLs Cisco Secure Firewall ASA Advanced Access Policies Cisco Secure Firewall ASA High Availability Overview VPN Technologies AND Cryptography Concepts VPN Definition VPN Types Secure Communication and Cryptographic Services Keys in Cryptography Public Key Infrastructure Cisco Umbrella Deployment Cisco Umbrella Capabilities Cisco Umbrella Identities and Policies Overview Cisco Umbrella DNS Security Cisco Umbrella Investigate Overview Cisco Umbrella Secure Web Gateway Cisco Umbrella CASB Functionalities Common Endpoint Attacks Buffer Overflow Malware Reconnaissance Attack Gaining Access and Control Gaining Access via Social Engineering Gaining Access via Web-Based Attacks Exploit Kits and Rootkits Privilege Escalation Post-Exploitation Phase Angler Exploit Kit Endpoint Security Technologies Host-Based Personal Firewall Host-Based Anti-Virus Host-Based Intrusion Prevention System Application Allowed Lists and Blocked Lists Host-Based Malware Protection Sandboxing Overview File Integrity Checking Cisco Secure Endpoint Cisco Secure Endpoint Architecture Cisco Secure Endpoint Engines Retrospective Security with Cisco Secure Endpoint Cisco Secure Endpoint Device and File Trajectory Managing Cisco Secure Endpoint for Endpoints 802.1X Authentication Cisco Catalyst Switch 802.1X Configuration Cisco IBNS 2.0 Configuration on Cisco Catalyst Switch Cisco WLC 802.1X Configuration Cisco ISE 802.1X Configuration Supplicant 802.1x Configuration Cisco Central Web Authentication Labs: Discovery 1: Configure Network Settings and NAT on Cisco Secure Firewall ASA Discovery 2: Configure Cisco Secure Firewall ASA Access Control Policies Discovery 3: Examine Cisco Umbrella Dashboard and DNS Security Discovery 4: Explore Cisco Umbrella Secure Web Gateway and Cloud-Delivered Firewall Discovery 5: Explore Cisco Umbrella CASB Functionalities Discovery 6: Explore Cisco Secure Endpoint Discovery 7: Perform Endpoint Analysis Using Cisco Secure Endpoint Console Discovery 8: Explore File Ransomware Protection by Cisco Secure Endpoint Console

OVERVIEW This course gives you a practical introduction to implementing, managing, customizing, and governing AI-powered solutions on the ServiceNow AI Platform. It's designed for Implementers, System Administrators, Application Developers, and AI Practitioners who want to deploy generative and agentic AI capabilities, create workflows, and extend ServiceNow with advanced functionality. By the end of the course, you'll be able to design, implement, and scale AI solutions in the platform with confidence, technical depth, and a strong grounding in governance best practices. Virtual Learning This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins. OBJECTIVES Understand foundational AI and Generative AI concepts and their relevance to ServiceNow. Evaluate organizational readiness for AI implementation, including data, foundational applications, and governance. Identify the components of the Now Assist framework and configure AI-powered end-user experiences. Explain ServiceNow’s model provider strategy and how models are selected, routed, and governed. Administer Now Assist deployments and manage settings through the Admin Console. Implement governance and responsible AI controls using the Now Assist Guardian capabilities. Extend the platform by building custom AI Skills with the Now Assist Skill Kit. Design and implement Agentic Workflows and AI Agents to automate and accelerate business processes. Enable cross-platform Agentic interaction using Agentic Fabric and the Model Context Provider (MCP) protocol. Monitor AI adoption, utilization, and value in the AI Control Tower. AUDIENCE This course is ideal for ServiceNow Administrators, AI Stewards, Application Developers, and IT Professionals who implement and manage ServiceNow's AI capabilities. CONTENT Course Format 16 hours of instructor-led training over 2 consecutive days, featuring: Interactive lectures and demonstrations Hands-on labs, exercises, and instruction-free challenges Real-world use case scenarios Q&A sessions and peer collaboration

OVERVIEW The SonicWall Network Security Administrator (SNSA) for SonicOS 7 curriculum provides students the required background, knowledge, and hands-on experience to begin designing, implementing, and troubleshooting SonicWall Network Security products. SonicOS 7 is SonicWall’s security operating system and is at the core of its latest physical and virtual firewalls, including models from the TZ, NSv, NSa and NSsp Series. SonicOS 7 features advanced security, simplified policy management, and critical networking and management capabilities for distributed enterprises and small[1]to medium-sized businesses with SD-branch support. Virtual Learning This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins. OBJECTIVES This course will enable students to configure, monitor, manage, and optimize the SonicWall Network Security firewall appliances running the new SonicOS 7 to effectively defend against limitless network and cyberthreats and implement SonicWall Cybersecurity safeguards for seamless protection. Formative evaluations (knowledge checks and hands-on classroom exercises) are incorporated throughout the course. Upon completion of the course, students will be able to configure the SonicWall firewall for Secure and Remote Connectivity, Network Optimization, and Advanced Threat Protection. AUDIENCE The SNSA course is recommended for all security professionals, system engineers, channel partners, service partners, and end users with at least one year of experience in implementing IT security technologies (Network, Applications, and Systems). CONTENT eLearning Modules: Getting Started Using Wizards Configuring Network Settings Managing User Accounts Configuring Route Policies Managing Logs Monitoring and Reporting Enabling Firewall Diagnostics Endpoint Security with Capture Client Unified Firewall Management with SonicWall Network Security Manager (NSM) Configuring DNS Filtering Instructor-Led Training: Setting up Basic Firewall Components Unified Threat Management Secure Access Deep Packet Inspection for SSL (DPI-SSL) Content Filtering Services Application Firewall Scalability and Reliability SD-WAN High Availability Troubleshooting Tools

OVERVIEW Global Knowledge is enthousiast om u een opleidingsprogramma aan te bieden dat gaat helpen het belang van informatiebeveiliging binnen softwareontwikkeling te leren begrijpen. Het programma helpt deelnemers basiskennis van informatiebeveiliging op te doen en vergroot het inzicht in het veilig ontwikkelen van software op basis van de Secure Software Development Life Cycle (SSDLC). Het maakt duidelijk wat er van elk teamlid verwacht wordt in elke fase van de SSDLC en brengt in kaart welke producten en processen ontwikkeld of verder uitgewerkt moeten worden, alsmede wie hier een bijdrage kan leveren. Het vertrekpunt is een casus van een te ontwikkelen applicatie. Gedurende drie dagen zal deze casus gezamenlijk behandeld worden waarbij theorie met opdrachten afgewisseld worden. De basis voor iedere groepssessie is in principe steeds gelijk. Daarnaast zal voor iedere groep op basis van het functieprofiel van de groep een deel maatwerk worden geleverd. OBJECTIVES Inhoudelijke wensen ten aanzien van de training: Belang van informatiebeveiliging begrijpen binnen softwareontwikkeling Basiskennis opdoen van informatiebeveiliging. Inzicht vergroten in het veilig ontwikkelen van software op basis van de Secure Software Development Life Cycle (SSDLC). Helder krijgen wat er van elke teamlid verwacht wordt in elke fase van de SSDLC In kaart brengen van welke producten en/of processen ontwikkeld en/of verder uitgewerkt moeten worden en wie hier een bijdrage kan leveren.   AUDIENCE De training wordt verplicht voor een breed scala aan functies binnen de ontwikkelteams, waaronder: Projectmanagers (IV/IT) Product owners (IV) Scrum masters (IT) Business analisten (IV) Solution architecten (IT) Junior, Medior, Senior ontwikkelaars (IT) Testers (IT) Applicatiebeheerders (IT) Security officers (IV) CONTENT Belang informatiebeveiliging Voorbeeld aanval Meest voorkomende kwetsbaarheden in software (bijvoorbeeld OWASP-top 10) Belang security door gehele software life-cycle (link naar BIO2 en NIS2) Uitleg van de meest belangrijke termen en concepten in informatiebeveiliging, zoals: CIA Defense-in-Depth & Breadth Identity & Access Management Security principes zoals Least Privilege, Fail-Safe Defaults, Complete Mediation, Least Common Mechanism, Economy of Mechanism, Zero Trust Security en Privacy by Design OWASP secure code practices SSDLC Fasen (Training, Requirements, Design, Implementation, Verification, Release, Response) Mogelijk toepassen/inbedden van de SSDLC in een Agile/Scrum proces: Security user stories Risico analyze / Threat Modeling Het zichtbaar maken van een definition of done (DoD) voor security eisen Het omgaan met geautomatiseerde security checks Belang van hardening sprints Belang penetratie testen bij oplevering MVPs Optionele onderwerpen: Belang van Architectural Runway om compliance en securityactiviteiten mee te plannen De rol van Security Champion binnen het team Daar waar mogelijk aangeven welke hulpmiddelen zoals templates, checklists, etc. binnen de organisatie beschikbaar zijn. Doel van de opdrachten is om ervaring op te doen met het doorlopen van de SSDLC en daarbij verbeteringen te identificeren. Zo zullen de volgende opdrachten uitgevoerd gaan worden: Verzamelen mogelijke stories en security user stories; Op basis van de user stories en security user stories: Opstellen van een high-level ontwerp, om zo een beter beeld te krijgen van de samenhang van diverse componenten; Uitvoeren van risicoanalyse die ondersteund wordt door een dreigingsanalyse op basis van de Microsoft STRIDE threat modeling methode op het eerder gemaakte high-level ontwerp; Bepalen van beveiligingsmaatregelen op basis van uitkomsten de risicoanalyse en deze vertalen naar aanvullende security user stories; Bepalen welke criteria er in de Definition of Done (DoD) moet worden opgenomen (denk aan: documentatie voor beheer en SOC-team, uitvoeren bepaalde testen, vastleggen van gevonden kwetsbaarheden, uitvoeren van bepaalde security testen, etc.)