Security Course Flow

We are often asked what is the recommended sequence of classes. Here is our recommended sequence of classes for The Security Field.

Certified Information Security Manager (CISM)

CT-325 CompTIA Security+

TN-825 Certified Information Security Manager

Certified Information Systems Auditor(CISA)

CT-325 CompTIA Security+

TN-425 Certified Ethical Hacker

TN-822: Certified Information Systems Auditor (CISA)

Certified Information Systems Security Professional(CISSP)

CT-325 CompTIA Security+

TN-425 Certified Ethical Hacker

TN-815 CISSP Certification Prep Seminar

N-505: CISCO DoD Comply to Connect (C2C)

Course Overview:

Cisco DoD Comply-to-Connect (C2C) course teaches you how to implement and deploy a Department of Defense (DoD) Comply-to-Connect network architecture using Cisco Identity Services Engine (ISE). This training covers implementation of 802.1X for both wired and wireless devices and how Cisco ISE uses that information to apply policy control and enforcement. Additionally, other topics like supplicants, non-supplicants, ISE profiler, authentication, authorization, and accounting (AAA) and public key infrastructure (PKI) support, reporting and troubleshooting are covered. Finally, C2C specific use case scenarios are covered.

This training also earns you 32 Continuing Education (CE) credits toward recertification.

Dates/Locations:

No Events

Duration: 5 days

Course Outline:

Section 1: C2C Fundamentals

Comply to Connect Overview
From C2C to ZTA
Steps to Implement C2C

Section 2: Cisco Identity-Based Networking Services

Cisco IBNS Overview
AAA Role in Cisco IBNS
Compare Cisco IBNS and Cisco ISE Solutions
Explore Cisco IBNS Architecture Components

Section 3: Introducing Cisco ISE Architecture

Cisco ISE as a Network Access Policy Engine
Cisco ISE Use Cases
Cisco ISE Functions

Section 4: Introducing Cisco ISE Deployment

Cisco ISE Deployment Models
Cisco ISE Licensing and Network Requirements
Cisco ISE Context Visibility Features
New Features in Cisco ISE 3.X

Section 5: Introducing Cisco ISE Policy Enforcement Components

802.1X for Wired and Wireless Access
MAC Authentication Bypass for Wired and Wireless Access
Identity Management
Active Directory Identity Source
Additional Identity Sources
Certificate Services

Section 6: Introducing Cisco ISE Policy Configuration

Cisco ISE Policy
Cisco ISE Authentication Rules
Cisco ISE Authorization Rules

Section 7: PKI and Advanced Supplicants

Public Key Infrastructure (PKI)
TEAP in Comply to Connect (C2C)
Secure Client ISE features and Configuration for C2C

Section 8: Introducing the Cisco ISE Profiler

Web Access with Cisco ISE
ISE Profiler
Cisco ISE Probes
Profiling Policy
Custom Attributes in Profile

Section 9: Introducing Cisco ISE Endpoint Compliance Services

Endpoint Compliance Services Overview

Section 10: Configuring Client Posture Services and Compliance

Client Posture Services and Provisioning Configuration

Section 11: Introducing Profiling Best Practices and Reporting

Profiling Best Practices

Section 12: C2C Use Cases

Cisco CX ISE Reporting Tool
ISE Reporting
ISE Hardening
Profiling Best Practices for C2C

Section 13: C2C Third-Party Integrations-Tenable

Tenable Use Case
Tenable Overview and Capabilities
Tenable Integration Prerequisites
Tenable Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 14: C2C Third-Party Integrations-MECM

MECM Use Case
MECM Overview and Capabilities
MECM Integration Prerequisites
MECM Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 15: C2C Third-Party Integrations-Trellix

Trellix Use Case
Trellix Overview and Capabilities
Trellix Integration Prerequisites
Trellix Integration Configuration
Policy Enforcement
Enforcement Verification

Section 16: Troubleshooting Cisco ISE Policy and Third-Party NAD

Cisco ISE Third-Party Network Access Device Support
Troubleshooting Cisco ISE Policy Configuration

Section 17: Exploring Cisco TrustSec

Cisco TrustSec Overview
Cisco TrustSec Enhancements
Cisco TrustSec Configuration

Section 18: Working with Network Access Devices

Reviewing AAA
Cisco ISE TACACS+ Device Administration
Configuring TACACS+ Device Administration
TACACS+ Device Administration Guidelines and Best Practices

Course Prerequisites:

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

Familiarity with 802.1X
Familiarity with Microsoft Windows Operating Systems
Familiarity with Cisco IOS CLI for wired and wireless network devices
Familiarity with Cisco Identity Service Engine

TN-315: Complete Hack and Defend

Course Overview:

Learn to protect yourself and your company against hackers, by learning their tools and techniques, and then testing your network. This course is heavily based on Kali and primarily on Metasploit. In TN-315: Complete Hack and Defend class you will learn the step by step process that hackers use to assess your enterprise network, probe it & hack into it in mixed-platform environment including Windows, Linux, Solaris, and Cisco. This course is 90% hacking, but defenses for demonstrated hacks will be discussed. If you want to know the ins and outs of the hacks presented in this course, then this is the course for you.

Attendees to TN-315: Complete Hack & Defend Class Attendees will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Introduction to Pen Testing using the PTES model
Metasploit Basics
- MSFconsole, MSFcli, Armitage, MSFpayload, MSFencode, NasmShell
Intelligence Gathering
- Nmap, Databases in Metasploit, Port Scanning with Metasploit
Quick Intro to Ruby
- Writing a simple Ruby script to create a custom scanner
Vulnerability Scanning
- Importing Nessus Results
- Scanning with Nessus from Within Metasploit
Exploitation
- Using the Metasploit Framework and console to exploit
Meterpreter
- Compromising a Windows System
- Attacking MS SQL, xp_cmdshell
- Dumping Usernames and Passwords, extracting and dumping hashes
- Pass the Hash and Token Impersonation
- Pivoting
- Railgun
- Using Meterpreter Scripts: Migrating a process, Killing AV, Persistence
Avoiding Detection
- Creating Stand-Alone Binaries with MSFpayload
- Encoding with MSFencode and Packers (go Green Bay:)
Exploitation Using Client Side Attacks
- Introduction to Immunity Debugger
- Using Immunity Debugger to Decipher NOP Shellcode
Metasploit Auxiliary Modules
Social Engineer Toolkit (SET)
- Spear-Phishing, Web Attack
- Creating a Multipronged Attack
Creating Your Own Module
- Adapt an existing Module
- Add some PowerShell and Run the Exploit
Meterpreter Scripting
Capture The Flag Exercise

Prerequisites:

This is an advanced Information Security Course which requires basic Windows & UNIX competency
Certification or 2 years of experience in these operating systems is highly recommended
An understanding of TCP/IP

Comments

Latest comments from students

User: dhonore

Instructor comments: Dave's presentation style is engaging and lively.

Facilities comments: The room was adequate for the needs of the class.

User: phouck

Instructor comments: David was very good. Although he went very fast at times.

Facilities comments: The room was ok. it was bit dark.

Liked the class? Then let everyone know!

CL-345: Red Hat OpenStack Administration II

Course Overview:

The focus of this course is managing Red Hat OpenStack Platform using the unified command-line interface, managing instances, and maintaining an enterprise deployment of OpenStack. This course also teaches the management and customization of an enterprise deployment of OpenStack (overcloud) and how to manage compute nodes with Red Hat OpenStack Platform director (undercloud).

Attendees to CL-345: Red Hat OpenStack Administration II will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Prerequisites:

This course is intended for Linux system administrators, cloud administrators, cloud operators, and infrastructure architects interested in, or responsible for, maintaining a private or hybrid cloud.

Prerequisites for this course is Red Hat Certified System Administrator (RHCSA), or demonstrate equivalent experience.

Attend Red Hat OpenStack Administration I: Core Operations for Cloud Operators (CL115), or demonstrate equivalent experience

Course Outline:

Navigate the Red Hat OpenStack Platform architecture
Describe the OpenStack control plane
Integrate Identity Management
Perform image operations
Manage storage
Manage OpenStack networking
Manage compute resources
Automate could applications
Troubleshoot OpenStack operations
Comprehensive review

Comments

Latest comments from students

Liked the class? Then let everyone know!

Palo Alto Networks

TechNow has been involved in enterprise security architectures and education since 1990. TechNow’s training program has followed the evolution of enterprise computing into security architectures. Palo Alto Networks represents the current state of security product evolution. With next generation firewall technology, the reunification of your security architecture is possible. TechNow can present the ramifications of many centralized strategies. All courses utilize enterprise security professionals with experience as instructors and can discuss the detail of implementation and the integration into an existing infrastructure.

Palo Alto Networks Certifications: Accredited Configuration Engineer (ACE) take EDU-201; Palo Alto Networks Certified Network Security Engineer (PCNSE) take EDU-201 + EDU-205 + EDU-221

TechNow is a mobile Pearson VUE Authorized Testing Center. Palo Alto courses can be delivered on the customer site, with certificadtion testing on the last day of the course. Take the course and get certfied, without logistical effort of getting students to a training facility and the hassle of scheduling testing.

TechNow, Inc. is not associated in any way with Palo Alto Networks, Inc.