Member Sign In|Contact|Home

The SANS Institute Training Class

AUDIT 507: Auditing Networks, Perimeters & Systems

March 10-15, 2008 in Jacksonville, FL

6 CPE credits per day for a total of 36 CPEs
GIAC Certification is available for an additional charge.  Refer to the registration form for details. 

Who Should Attend:

A Sampling of Topics
  • Security professionals newly tasked with audit responsibilities
  • System and network administrators looking to better understand what an auditor is trying to achieve, how they think and how to better prepare for an audit
  • Audit professionals looking for technical details on auditing
  • Top Twenty Vulnerabilities
  • Forensic Techniques
  • Firewall and Perimeter Auditing
  • Time-Based Security
  • Blending Audit Objectives with Corporate Policy
  • Steps to Take Before an Incident Occurs
  • Rootkit Pathology
  • Uncovering "Back Doors"
  • Building a Forensics Toolkit
  • Detailed Audit of a Router
  • Getting Started with Nmap
  • Mapping Your Network
  • Six-Step Audit Process: How To. . . 
  • Network Security Password Harvesting
  • Analyzing the Results
  • Who Should Be on the Security Committee
  • Audit Tools 

$1,500 fee for the following constituencies only:


Educational Institutions
State and Local Law Enforcement
State and Local Government
Developing Nations/International Partners to the U.S.

$3,545 for those not listed above

 

This six-day course is the end product of over one hundred skilled system, network and security administrators working with one common goal: to improve the state of information security.

“For those without a heavy background in technology but need to audit systems at an OS level, this is a great introduction,” says Ken McKinley, Curtis Wright. 

This course, like all SANS courses, is based on known and validated threats and vulnerabilities. These threats and vulnerabilities are explained based on validated information from real world situations that can be used to raise awareness within an organization and build an understanding of why monitoring and securing networks is important. From these threats and vulnerabilities, we build the countermeasures and defenses including instrumentation, metrics and auditing. The course begins with a high-level introduction on methods and assessment programs. It then takes you through all the particulars of how to actually review devices and IT systems that range from firewalls and routers all the way down to the underlying operating systems.

You'll be able to use what you learn the day you get home. Five of the six days in the course will include hands-on exercises with the demonstrated tools on a live in-class network. Each student is required to bring their own Windows 2000 or higher laptop for use during class. The hands-on exercises will allow you to experiment with the tools discussed in class and to actually perform review functions against SANS-provided servers in class. A great review is more than marks on a checklist; it is the understanding of the best practices, system analysis and forensics. Sign up for this course and experience the mix of theory and hands-on, pragmatic knowledge.

Registration

Secure, Online Registration Form

Downloadable PDF Registration Form 
(for fax or postal service)

  Program Information

In-Depth Course Description

Meal & Hotel Reservation Information

Meal & Hotel Information

Additional Information

Certification Information

Equipment Requirements*

Important Event Policies*

Instructor Biography

*You must understand and agree to the requirements and policies 
listed on these pages to register for the ACUA/SANS course.

Information on the GIAC Exam

The exams are taken online via the student's Portal account. Student can take the exams from the comfort of their own office or home, but it is to their advantage to have a reliable (and fast) connection. The *real* exams are multiple choice, open book, with a time limit to complete them. Most exams are 100 questions with a thee hour limit.  Students who complete the exams for their certification have earned GIAC SILVER. And for students who want to take their professional accomplishment to another level? GIAC Gold is just a matter of proving it. GIAC Gold will require a technical report to be completed by the candidate that will benefit the community. Students attempting GIAC Gold will have an advisor to work with throughout the development of their project.

GIAC has recently introduced practice tests as a benefit to the certification program. For those certifications in which practice tests are available, candidates will be given two attempts at a practice test for each real exam required for that certification.

Here is also a link to SANS GIAC Objectives and Curriculum Guide: http://www.giac.org/overview/brief.pdf

Author Statement

The SANS Advanced Systems Audit course stands alone in the Information Assurance arena as the only comprehensive source for hands on audit "How To." Past students have included longtime auditors and those new to the field, both of whom have found significant benefit from the refresher material. One individual, a vice president with the IIA (Institute of Internal Auditors) said, "I've been auditing systems for a very long time and no one ever actually gave me a formal process that I can apply to conducting technical audits. Thank you!" While we don't require a high level of technical experience as a prerequisite to this course, we have worked hard to make sure that anyone who comes to the course walks away with a wealth of material that they can go back to their office and apply tomorrow. We realistically address the "How do I get there from here?" problem by offering short-term goal solutions which, when combined, will allow you to achieve your goal: identify, report on and reduce risk in your enterprise. – Dave Hoelzer