|
|
Auditing Firewalls
ISACA-CMC Spring Seminar
Presented by: SecureIT
No budget to make it to CACS this year? Consider the next best option and attend Auditing Firewall training locally.
Audience: This course is targeted towards mid-level auditors, system administrators, Information Technology personnel, and all other security professionals tasked with securing the borders of their enterprises. It is designed to increase the technical knowledge of participants at a beginner- to intermediate-level of understanding.
Dates: Monday-Tuesday, April 28th – 29th, 2008
Place: The Conference
Center at the Maritime Institute – Deck D
692
Maritime Blvd
Linthicum Heights, MD 21090
(410)
859-5700
Located near the BWI airport
For
directions, visit:
http://www.mitags.org/t-directions
Planned CPEs: 14
Time: Registration: 7:30 – 8:00
Seminar: 8:00
– 4:30 (buffet luncheon and breaks included)
Price: Members: $500
Non-members:
$600
Member pricing includes all ISACA members and Baltimore chapters of the IIA, AGA, ISSA and CFE.
Registration and Payment: Pre-registration and pre-payment are required. Please follow the following links to:
REGISTER AND PREPAY WITH A CREDIT CARD
REGISTER AND PREPAY BY CHECK or call Joanie Miller at (717) 664-8037 by NOON on Friday, April 11th. For payment, make checks payable to ISACA-CMC. Please include the registrant’s name with your check and mail to:
Lisa Schenk
c/o Internal Audit, Municipal Mortgage & Equity, LLC
621 East Pratt St. Suite 300
Baltimore, MD 21202
Cancellation Notice: Full refunds will be given if registration is cancelled prior to Friday, April 11th. Refunds will not be given after that date. Attendance is transferable. ISACA Central Maryland Chapter reserves the right to cancel this event if there is not sufficient participation. Participants will be notified the week of April 14th in the event that the seminar has been cancelled. Paid registrations will be refunded.
Hotel Accommodations:
For those living outside of commuting distance to the Conference Center, hotel reservations can be made at the Maritime Institute hotel at the ISACA group rate of $130 per night, which includes dinner and breakfast. To make reservations, call Maritime at (410) 859-5700, press 7 for hotel reservations and then book your room under the ISACA group’s 2-day Auditing Firewalls seminar arriving Sunday, April 27 and leaving Tuesday, April 29. Hotel guests also receive free shuttle service from the BWI airport and the BWI Amtrak train station, but would need to call the Maritime hotel to schedule pickup.
Seminar Description:
Auditing Firewalls
With increased connectivity to the Internet, organizations can no longer simply rely on operating system security to protect their valuable corporate data. They must also rely on other network security components to provide this protection, including firewalls and routers. These components must be properly configured and managed to ensure that only authorized network traffic is able to pass through to internal networks. This introductory course will help participants understand how firewalls should be configured and managed to provide effective filtering controls for networks. Participants will obtain the knowledge necessary to understand and effectively perform a basic evaluation of firewall configurations and management processes without being overwhelmed with technical details. This course provides control concepts and principles that are generally applicable to any firewall product, as well as principles to apply to an in-depth configuration review of a Check Point NGX firewall.
Outline:
- NETWORK SECURITY BASICS
- Types of networks
- Network security risks
- Principles of network security
- Defense in Depth
- INTRODUCTION TO TCPIP
- TCP/IP & Network Packets
- IP Addressing and IP Packet Headers
- TCP and the three-way handshake
- UDP and ICMP
- Application level ports
- FIREWALL TOPOLOGIES AND ARCHITECTURES
- Firewall components
- Categories of firewalls
- Network topologies
- HARDENING THE HOST
- Why harden?
- Elements of effective hardening
- Options for hardening
- FILTERING THEORY
- S imple packet filters
- Stateful inspection filters
- Application proxy filters
- FILTERING PRACTICE
- General Principles for Effective Filtering
- Recommended Filters
- Approach for Validating Filters
- FIREWALL ADMINISTRATION AND MANAGEMENT
- Administrative access – authentication and encryption
- Change Management
- Periodic validation of firewall rules
- LOGGING AND MONITORING
- Activity to be Logged
- Monitoring of Logs
- Tools for Monitoring Logs
- Alerts
- NAT AND VPN
- CHECKPOINT NGX ADMINISTRATION AND MANAGEMENT
- CHECKPOINT NGX SECURITY POLICY
- CHECKPOINT LOGGING AND ALERTING
- SMARTDEFENSE
Instructor Bio:
Mr. Robert A. Andrews II, CISSP, is Senior Partner of P3 Strategic, LLC, a SecureIT alliance partner. Mr. Andrews specializes in IT security, network architecture, and information forensics. He has been teaching IT security seminars for the last 6 years. Mr. Andrews has hands-on experience in administering and assessing network security, and has developed and presented security training seminars and workshops for commercial and Federal clients. Mr. Andrews is Lead Instructor & Program coordinator, as well as the Director of IT Security and Forensics Degree Program, at the Pittsburgh Technical Institute. When not engaged in training or consulting projects, he has also served as the technical editor for several IT certification manuals published by McGraw-Hill. Rob has earned system engineering certifications from several vendors, including Check Point, Cisco, and Microsoft.
