Web Applicatin Security Versin 13.0 Training Curse SecureSphere Web Applicatin Security Versin 13.0 Required Training Units: 4 (TR-UNIT) Training Units are gd fr 1 year frm the time f purchase. Length: 4 Days Overview In this 4-day hands-n curse, students will learn: Hw t cnfigure SecureSphere fr an n premises Web Applicatin Firewall including ThreatRadar subscriptin services. Hw t evaluate the cnfiguratin f the Web Applicatin Firewall t ensure it is mnitring prtected assets yu have identified. Hw t implement detectin and prtectin cntrls using Plicies and Fllwed Actins Hw t cnfigure Web Prfiling. Hw t analyze Vilatins and Alerts. Hw t perfrm best practice tuning tasks. Hw t cnfigure Active Blcking and errr pages. Hw t integrate external web scanner data with SecureSphere and manage identified vulnerabilities. Hw and why t cnfigure SecureSphere Web Gateway t wrk in a Reverse Prxy deplyment mde. On the final day f class, students will perfrm a capstne exercise t reinfrce their understanding and ability t apply the cncepts learned during class. Wh Shuld Attend This curse is intended fr security administratrs, security analysts,security engineers, and Web applicatin develpers wh are respnsible fr securing and mnitring Web applicatins with SecureSphere. Prerequisites Befre taking this curse, yu shuld have the fllwing skills: General understanding f applicatin layer security cncepts, applicatin layer Web, and/r database prtcls. Basic understanding f HTML and HTTP. URLs, Parameters, headers, methds, HTTP server respnse cdes, etc. Experience implementing r managing data center security r database applicatins.
Lessn Objectives Lessn 1: Lab Envirnment and SecureSphere Web UI Review the SecureSphere Architecture Becme familiar with the presentatin f the training materials. Learn t use the Imperva training prtal t find supplemental curse materials. Becme familiar with the lab envirnment, tplgy, and user accunts. Becme familiar with the SecureSphere Web UI s majr cmpnents and navigating the Web UI. Lessn 2: Initial Web UI Cnfiguratin Set passwrd strength requirements. Enable users t enter cmments when making changes t security plicies. Create SecureSphere user accunts and rles. Cnfigure Active Directry authenticatin. Update ADC cntent. Lessn 3: Sites Tree Cnfiguratin Create a Site. Create a Server Grup. Create a Service and default Applicatin. Discver and secure previusly unknwn servers n the netwrk. Add discvered servers t a Site. Lessn 4: HTTP Service Cnfiguratin Cnfigure Frwarded Cnnectins (Lad Balanced Traffic) Install Prtected Web Servers SSL Keys Cnfigure Data Masking Cnfigure Web Errr Pages Lessn 5: HTTP Applicatin Cnfiguratin Create and Cnfigure Web Applicatins as needed. Direct HTTP client traffic t the apprpriate Web Applicatin. Adjust initial learning threshlds s that SecureSphere mre accurately prfile web traffic. Lessn 6: Actins Define, cmpare, and cntrast Actin Interfaces, Actin Sets, and Fllwed Actins. Explain placehlders, and where t find cmplete details regarding them. Create Email, FTP, Syslg, etc., Actin Interfaces as needed. Create Email, FTP, Syslg, etc., Actin Sets as needed. Use Fllwed Actins t implement Actin Sets n system administratin jbs.
Lessn 7: Security Plicies Given different types f Web attacks, cnfigure apprpriate plices t defend Web applicatins. Implement Fllwed Actins in Security Plicies. Cnfigure and apply: Signature plicies t defend Web applicatins frm attacks with easily recgnizable signatures. Prtcl plicies t defend Web applicatins frm prtcl attacks. Crrelatin plicies t prtect against multi-frnt Web attacks. Custm Web plicies t prtect specific applicatin weaknesses. Explain the factrs that determine when t use mdify a built-in plicy, and when t create a cpy f a built-in plicy and mdify it instead. Lessn 8: Web Applicatin Prfiling Describe the cmpnents f the Web Applicatin Prfile. Explain hw the Web Applicatin Prfile learns and prtects web applicatins. Define and explain hw applicatin activity is mapped t the prfile applicatin mapping. Identify cmmn web applicatin cmpnents used in the learning prcess. Define and explain hw web applicatin user tracking perates. Explain hw t select Web Prfile Plicy rules fr the prtected web applicatin. Lessn 9: ThreatRadar Identify and cnfigure apprpriate ThreatRadar feeds t help secure web applicatins. Identify when t use and hw t cnfigure TR Reputatin Services. Identify when t use and hw t cnfigure ThreatRadar Bt Prtectin. Identify when t use and hw t cnfigure Intelligence (Cmmunity Defense). Lessn 10: Alerts and Vilatins Use the Mnitring Dashbard t view a summary f current Vilatins and Alerts. Perfrm detailed analysis f Alerts and Vilatins t identify false psitives, attacks, and tuning pprtunities. Use the Add as Exceptin and add t prfile buttns t tune plicies and prfiles. Manage the wrkflw f Security Mnitring by using SecureSphere s Alert Flags. Lessn 11: Reprting Describe the features f SecureSphere s Reprt Settings. Describe hw t wrk with reprt Keywrds. Create reprts f varius types, including System Events, Cnfiguratin, and Alerts reprts. Schedule Reprts and the Reprts Archive jb. Create security-fcused reprts, such as Daily r Weekly Tp 10 Alert reprts. Lessn 12: Web Applicatin Security Tuning Use Reprts t identify where t tune SecureSphere.
Use the Prfile Optimizatin Wizard t help tune Prfiles. Explain the impact and trade-ffs f varius Prfile tuning ptins. Examine multiple ways t tune Security Plicies. Lessn 13: Active Blcking Cnfigure SecureSphere t enfrce the tuned cnfiguratin. Mve SecureSphere frm Simulatin t Active Blcking mde. Verify the nn-default errr page is wrking. Identify and manage Fllwed Actin Blck events. Cnfigure additinal Web Errr Page Grups as needed. Lessn 14: Reverse Prxy Select the apprpriate reverse prxy mde based n deplyment requirements fr URL rewriting, ckie signing, SSL terminatin, and/r respnse rewriting. Cnfigure Reverse Prxy mde settings. Cnfigure and apply SSL Cipher Suites t inbund and utbund prxy rules. Create and cnfigure default and custm web errr pages fr use in security plicies. Cnfigure URL rewrite and redirectin rules. Cnfigure SecureSphere t wrk with SSL Client Certificates. Lessn 15: End f Class Capstne Exercise The Capstne Exercise challenges students t perfrm a series f tasks designed t help students reinfrce learning by recalling and applying the cncepts and skills presented during the class. Tasks include: Cnfigure a Site Hierarchy t prtect a Web Applicatin. Mask sensitive data, such as credit card numbers, s they are nt expsed. Cnfigure SecureSphere s Web Applicatin prfiles and map web traffic t apprpriate Web Applicatins. Cnfigure SecureSphere t prperly supprt and inspect traffic that is lad balanced r prxied befre reaching the prtected web servers. Autmate and archive regular SecureSphere system backups. Cnfigure SecureSphere t prtect web servers against data leakage. Cnfigure SecureSphere t share infrmatin with external mnitring servers, such as a syslg server. Perfrm Security Tuning t ptimize SecureSphere s cnfiguratin. Create a variety f reprts. Find and prtect unexpected / rgue servers n the netwrk.
Getting Started Delivery Optins Open Classrm Virtual Classrm Private On-site Instructr-Led, in persn classes hsted at an Imperva training facility. Class includes: Electrnic Training Material Sandbx fr hands-n labs Instructr-Led, yu attend class via web cnferencing. Class includes: Electrnic Training Materials Sandbx fr hands-n labs Instructr-Led, in persn classes hsted at yur facility fr 6 t 12 participants. (purchase TR-4-DAY- ONSITE-6 fr 6 participants) Class includes: Electrnic Training Materials Sandbx fr hands-n labs Hw t Purchase Purchase Training Units via Purchase Order Cntact yur lcal Imperva sales representative r cntact yur lcal Imperva partner fr training unit price qute and t submit a Purchase Order fr training units. Yu will receive an Imperva SRV# fr use in class enrllment. If yu d nt have a sales cntact, please call 1-866-926-4678, r cmplete ur infrmatin frm. Purchase Classes via Credit Card Training can be purchased using a majr credit card, during the curse enrllment prcess. Hw t Enrll IMPORTANT: Only individuals with an Imperva prtal accunt username and passwrd can enrll in classes. If yu d nt have a Custmer r Partner prtal accunt, yu may request ne frm ur site. If yu need assistance with the accunt request, cntact supprt@imperva.cm. T enrll, have yur prtal username and passwrd available, visit the Imperva Training website and register fr yur class frm the Training Calendar. Select either Credit Card r Training Units (Purchase Order) as yur payment ptin. If yu select Training Units, yu may be asked t enter an Imperva SRV# (received when Purchase Order is finalized). Nte: Cmpany PO#s are nt accepted fr payment during class enrllment prcess. Schedule If yu purchased nsite training and wuld like t schedule delivery, please call us at +1-972-887-5922 r email training@imperva.cm Please refer t Imperva Terms and Cnditins when registering fr training fr additinal infrmatin. 2017 Imperva, Inc. All rights reserved. Imperva, the Imperva lg, SecureSphere and Incapsula are trademarks f Imperva, Inc. and its subsidiaries. All ther brand r prduct names are trademarks r registered trademarks f their respective hlders. Tech-Name-Date-rev#