TRAINING WEEK COURSE OUTLINE May RADISSON HOTEL TRINIDAD Port of Spain, Trinidad, W.I.

Transcription

1 TRAINING WEEK COURSE OUTLINE May RADISSON HOTEL TRINIDAD Prt f Spain, Trinidad, W.I.

2 FACILITATOR S BIOGRAPHY Jhn Tannahill, CA, CISM, CGEIT, CRISC is a management cnsultant specializing in infrmatin security and audit services. His current fcus is n infrmatin security management and cntrl in large infrmatin systems envirnments and netwrks. His specific areas f technical expertise include UNIX and Windws perating system security, netwrk security, and Oracle and Micrsft SQL Server security. Jhn is a frequent speaker in Canada, Eurpe and the US n the subject f infrmatin security and audit. He is a member f the Trnt ISACA Chapter and has spken at many ISACA Cnferences and Chapter Events including ISACA Training Weeks; Nrth America CACS; EurCACS; Asia- Pacific CACS; Internatinal and Netwrk and Infrmatin Security Cnferences. Jhn is the 2008 Recipient f the ISACA Jhn Kuyer Best Speaker/ Best Cnference Cntributr Award. Prir speaking engagements include: ISACA Chapter seminars (e.g. Trnt, Washingtn, Trinidad & Tbag) ISACA Training Weeks (2001- present) ISACA NACACS, EurCACS, Asia-Pacific CACS Cnferences ISACA Infrmatin Security Management Cnferences ISACA Internatinal Cnferences CSI Annual Cmputer Security Cnference (2009) Presented many in-huse 1-day 5-day seminars Page2 Training Week May Radissn Htel, Trinidad, W.I.

3 CYBERSECURITY RISK, CONTROL AND AUDIT: 3 DAYS (SEMINAR) SESSION OBJECTIVES This sessin will fcus n the risk and cntrl issues related t cybersecurity and emerging infrmatin security and technlgy, including key cntrls and hw t audit them. Sessin will use specific IT technlgies as examples f cntrl mappings including netwrk cmpnents, perating systems and TCP/IP Services. Understand cybersecurity risk and cntrl issues Understand emerging risk areas Understand NIST Cybersecurity Framewrk and Mapping t Key Security & Cntrl Framewrks Understand relatinship f NIST Cybersecurity Framewrk t COBIT 5 Gals Cascade Understand mapping f NIST Cybersecurity Framewrk t COBIT 5 Prcesses Understand Critical Security Cntrls and related audit bjectives and steps AREAS OF COVERAGE: DAY 1: CYBERSECURITY CONCEPTS; EMERGING THREATS & RISKS Understanding Cybersecurity: Key cncepts and relatinship t business rganizatins Cyber Warfare / Terrrism / Hacktivism / Crime / Espinage Understanding Emerging Threats and Risks: Overview f Threat Landscape Advanced Persistent Threats (APT) Understanding Malware: e.g. Stuxnet; Distributed Denial f Service Attacks (DDS) Key Attack Vectrs including Scial Engineering; Phishing; Watering Hles Btnets; Cmmand and Cntrl Page3 Training Week May Radissn Htel, Trinidad, W.I.

4 DAY 2: KEY CYBERSECURITY CONTROLS Cybersecurity Gvernance Risk Management Key Cybersecurity Cntrls Key Cntrl Requirements: Netwrk Segmentatin / Islatin Security Cnfiguratin Patch Management Privilege Management Anti-Malware Defense and Applicatin Whitelisting Data Lss Preventin Incident Management Security Awareness Security and Audit Tls & Techniques Questins auditrs shuld ask in relatin t IT infrastructure and crprate infrmatin prtectin Useful reference material DAY 3: CONDUCTING A CYBERSECURITY ASSESSMENT Cybersecurity Framewrks Key cybersecurity cncepts and relatinship t business rganizatins Mapping f NIST Framewrk Cntrl Categries t relevant COBIT5 prcesses Cybersecurity verview including industry threat trends and techniques using examples Cybersecurity Gvernance cntrls and prcesses t manage Cyber Risk Mapping f NIST Framewrk Cntrl Categries and Sub-Categries t Critical Security Cntrls, ISO/IEC , etc. Tp 4 Mitigatin Strategies Cyber Risk cnsideratins when perfrming technlgy platfrm, applicatin and business audits NIST Cybersecurity Framewrk & Functins, Categries, etc. Critical Security Cntrls and Related Audit Objectives & Steps Discussin f current Cybersecurity Self- Assessment Tls Page4 Training Week May Radissn Htel, Trinidad, W.I.

5 Page5 RISK-BASED IT INFRASTRUCTURE SECURITY & CONTROL ASSESSMENTS: 2 DAYS (SEMINAR) Key infrmatin security gvernance cntrls, including a risk-based apprach t design, peratin and assessment f security and cntrls are critical t ensuring that an rganizatin s infrmatin assets are adequately prtected t prevent cmprmise. SESSION OBJECTIVES: This sessin will discuss a risk-based apprach t assessment f security and cntrl in the fllwing areas: Cnfiguratin Management Cntrls Security Cnfiguratin Standards Build Prcesses Patch and Change Management Prcesses Security Event Mnitring Vulnerability Assessment & Management Security Cmpliance Prcesses AREAS OF COVERAGE: 1. IT INFRASTRUCTURE RISK & CONTROL Infrmatin Security Gvernance Security Plicy and Standards Framewrk Mapping IT Infrastructure t Applicatin Systems and Business Prcesses Security Architecture & Design 2. SECURITY STANDARDS & BASELINES Key Baselines & Security Cnfiguratin Standards Risk Assessment Prcesses Building a Risk Prfile Threat and Vulnerability Management Security Cmpliance Prcesses Key Security Metrics Best Practice Analysis 3. SECURITY COMPLIANCE PROCESS AND CONTROL ASSESSMENT Assessment Methdlgies & Appraches Results Reprting & Management Key Assessment Tls Training Week May Radissn Htel, Trinidad, W.I.

6 Page6 The apprach t building risk prfiles, key cntrls and assessment methdlgies will be discussed and applied t the fllwing technlgy envirnments: 1. VIRTUALIZATION SECURITY VMware ESXi; vsphere and Hyper-V Risk Prfile and Key Risks Key Security Cntrls Key Security Cmpliance Assessment Tls 2. OPERATING SYSTEM SECURITY Windws Server 2008/2012, Unix and Linux Risk Prfile and Key Risks Key Security Cntrls Key Security Cmpliance Assessment Tls 3. DATABASE SECURITY Oracle, SQL Server and DB2-LUW Risk Prfile and Key Risks Key Security Cmpliance Assessment Tls Key Security Cntrls 4. NETWORK SECURITY Netwrk Perimeter, Firewalls, Cre Switches and Ruters, NGFW Risk Prfile and Key Risks Key Security Cntrls Key Security Cmpliance Assessment Tls Training Week May Radissn Htel, Trinidad, W.I.