PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201)

Course Overview: PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Class is a three-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. This course prepares the student for the Palo Alto Networks Accredited Configuration Engineer (ACE) and progress to the Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.

Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.

This course sets up the foundation for the two day course PA-212: Palo Alto Networks Firewall Configure Extended Features. The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications.

Attendees to the PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Course will receive TechNow approved course materials and expert instruction.

TechNow PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) immediately follows this course in the schedule so that you can take both courses in the same week. We also offer a discount for attending both classes in the same week!!

Dates/Locations:

No Events

Duration: 3 days

Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall, including hands-on experience in configuring the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks Operating System (PAN-OS).

Day 1

Module 0 – Introduction & Overview
Module 1 – Platforms and Architecture
- Single-Pass Architecture
- Flow Logic
Module 2 – Initial Configuration
- Initial Access to the System
- Configuration Management
- Licensing and Software Updates
- Account Administration
Mod 3: Basic Interface Configuration
- Security Zones
  Layer 2, Layer 3, Virtual Wire, and Tap
- Subinterfaces
- DHCP
- Virtual Routers
Mod 4: Security and NAT Policies
- Security Policy Configuration
- Policy Administration
- NAT (source and destination)

Day 2

Mod 5: Basic App-ID™
- App-ID Overview
- Application Groups and Filters
Mod 6: Basic Content-ID™
- Antivirus
- Anti-spyware
- Vulnerability
- URL Filtering
Mod 7: File Blocking and WildFire™
- File Blocking
- WildFire
Mod 8: Decryption
- Certificate Management
- Outbound SSL Decryption
- Inbound SSL Decryption

Day 3

Mod 9: Basic User-ID™
- Enumerating Users
- Mapping Users to IP Addresses
- User-ID Agent
Mod 10: Site-to-Site VPNs
- IPSec Tunnels
Mod 11: Management and Reporting
- Dashboard
- Basic Logging
- Basic Reports
- Panorama
Mod 12: Active/Passive High
- Availability
- Configuring Active/Passive HA

Prerequisites:

Security+, Network+, CCNA and networking experience is recommended.

This course is in no way associated with Palo Alto Networks, Inc.

Comments

Latest comments from students

Like the class? Then let everyone know!

TN-813: Certified in Governance, Risk and Compliance (CGRC)

Course Overview:

TN-813: Certified in Governance, Risk, and Compliance (CGRC) course is for the (ISC)²® Certified in Governance, Risk, and Compliance (CGRC) credential previously known as Certified Authorization Professional (CAP). This course walks the student through the Risk Management Framework following practices the NIST pubs. CGRC is an objective measure of the knowledge, skills and abilities required for personnel involved in the process of certifying and accrediting security of information systems. Specifically, this credential applies to those responsible for formalizing processes used to assess risk and establish security requirements. Their decisions will ensure that information systems possess security commensurate with the level of exposure to potential risk, as well as damage to assets or individuals.The CGRC credential is appropriate for civilian, state and local governments in the U.S., as well as commercial markets. CGRC certification applies to job functions such as authorization officials, system owners, information owners, information system security officers, and certifiers. CGRC is crucial to the Management staff.

This course is the “why” of the entire security field. It provides a logical way of allocating resources where there is greatest risk and why we make the decisions we make in the field of security. It is TechNow’s view that of all the security courses we have seen, this course genuinely puts the “big picture” of security in front of the students. Students actually come to an understanding of truly what is critical to security of an enterprise versus a bunch of nuts and bolts of security.

TechNow’s CGRC course covers all of the (ISC)²® CGRC 7 Knowledge domains:

Security and Privacy Governance, Risk Management, and Compliance Program
Scope of the System
Selection and Approval of Framework, Security, and Privacy Controls
Implementation of Security and Privacy Controls
Assessment/ Audit of Security and Privacy Controls
System Compliance
Compliance Maintenance

RMF Related Steps

Prepare – Process Initiation
Categorize Information Systems
Establish the Security Control Baseline
Apply Security Controls
Assess Security Controls
Authorize Information System
Monitor Security Controls

TechNow’s CGRC Instructors have extensive knowledge and experience in the field, and have been working with organizations to build assessor teams for over 20 years.

Attendees to TN-813: Certified in Governance, Risk, and Compliance (CGRC) will receive TechNow authorized training materials, including access to the documentation of the CGRC Exam domains, and expert instruction.

Dates/Locations:

No Events

Duration: 3 Days

Course Objectives:

Initiate the Preparation Phase
Perform Execution Phase
Perform Maintenance Phase
Understand the Purpose of Security Authorization

Prerequisites:

IT Security
Information Assurance
Information Risk Management certification and systems administration
1-2 years of general experience technical experience
2 years of general systems experience
1-2 years of Database/Systems Development/Network Experience
Information Security Policy Experience

Comments

Latest comments from students

Liked the class? Then let everyone know!

DO-375: Automation with Ansible and Ansible Tower

Course Overview:

Through hands-on labs, you will learn to automate system administration tasks on managed hosts with Ansible, learn how to write Ansible playbooks to standardize task execution, and manage encryption for Ansible with Ansible Vault. This course will also teach you how to deploy and use Red Hat® Ansible Tower to centrally manage existing Ansible projects, playbooks, and roles; perform basic maintenance and administration of the Ansible Tower installation; and configure users and teams and use them to control access to systems, projects, and other resources through role-based access controls. You will learn to use Ansible Tower’s visual dashboard to launch, control, and monitor Ansible jobs; use the Ansible Tower application programming interface (API) to launch jobs from existing templates; automatically schedule Ansible jobs; and dynamically update host inventories.

Course Objectives:

Install and troubleshoot Ansible on central nodes and managed hosts
Automate administration tasks with Ansible playbooks and ad hoc commands
Write effective Ansible playbooks
Protect sensitive data used by tasks with Ansible Vault.
Install and configure Ansible Tower for enterprise Ansible management
Use Ansible Tower to control access to inventories and machine credentials by users and teams
Create job templates in Ansible Tower to standardize playbook execution.
Centrally launch playbooks and monitor and review job results with Ansible Tower

Course Outline:

Introduce Ansible
Deploy Ansible
Implement playbooks
Manage variables and inclusions
Implement task control
Implement Jinja2 templates
Implement roles
Configure complex playbooks
Implement Ansible Vault
Troubleshoot Ansible
Install Ansible Tower and describe Ansible Tower’s architecture
Create users and teams for role-based access control
Create and manage inventories and credentials
Manage projects for provisioning with Ansible Tower
Construct advanced job workflows
Update inventories dynamically and compare inventory members
Maintenance and administration of Ansible Tower

Dates/Locations:

No Events

Duration: 5 Days

Prerequisites:

Become a Red Hat Certified System Administrator, or demonstrate equivalent experience

Target Audience:

This course is designed for Linux system administrators, cloud administrators, and network administrators needing to automate configuration management, application deployment, and intraservice orchestration at an enterprise scale.

TN-565: Nessus Vulnerability & Compliance Auditing

Course Overview:

This course provides security professionals with the skills and knowledge to perform vulnerability and compliance scanning of supported operating systems, devices, and applications. Students will construct custom scan policies for topology discovery, network vulnerability detection, credentialed patch audits, and compliance benchmarks, and discuss the underlying technologies utilized by the Nessus scanner.

This course provides students with the necessary information to prepare for the Tenable Certified Nessus Auditor (TCNA) exam.

Date/Locations:

No Events

Duration: 5 days

Course Objectives:

Introduction to Nessus and Vulnerability Scanning
Nessus Installation and Administration
Basic Nessus Scan Operation
Nessus Scan Configuration and Policy Creation
Vulnerability Analysis and Reporting with Nessus
Advanced Scan Configuration and Policy Creation
Introduction to Compliance and Auditing
Nessus Auditing Features
Windows System Auditing
Unix System Auditing
Cisco IOS Auditing
Nessus Database Auditing
Nessus Content Auditing
Auditing to Industry Guidelines
Auditing to Federal Guidelines

Prerequisites:

Students should possess a basic understanding of TCP/IP networking, operating systems security, and common client/server applications.

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-335: Advanced Penetration Testing Using Open Source Tools

Course Overview:

This is an advanced course that assumes the attendee is a qualified security professional with experience using security tools and understands the concepts behind penetration testing. Courses that build up the expertise that enables a student to succeed in this course is Security+, CEH, CISSP, and any of the GIAC certifications. This course is completely hands-on and utilizes the BackTrack tool suite from backtrack-linux.org. The course covers, in detail, various attacks and tools that are contained in the BackTrack tool suite.

Attendees to TN-335: Advanced Penetration Testing Using Open Source Tools will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 days

Course Objectives:

Information Security and Open Source Software
Operating System Tools
Firewalls
Scanners
Vulnerability Scanners
Network Sniffers
Intrusion Detection Systems
Analysis and Management Tools
Encryption Tools
Wireless Tools
Forensic Tools
More on Open Source Software