Professional Documents
Culture Documents
Syllabus CISO & Architets 100612 29august12
Syllabus CISO & Architets 100612 29august12
CISO
' 24
:
,
,
- 29 : 2012
)(
" " , , 20 - .
. -
. ,
, .
, : ,
)( , , ) ,(CISO
. , " "
) Pen-Tester, App-Tester'( . )
/ ( ,
) , ( ,
CCSA, CCNA, ISA )
(.
,
, .
,
.
, -
, ,
, .
,
CISO
,
.2004
- -
CISO's
.
.
CISO
See Security?
?
CISO
, , , ,
.
CISO - / ,
, ,
, ,
, ,
"" ,
, ,
.
, : , .
CISO )
, ( ,
\ ,
) ( ,
, CISSP CISM .CEH
.
Windows Linux
. . Web, TCP/IP ,Linux ,Windows
) 400 - (.
.
280 - , 70 ) 10-( .
See Security- . 3 - .
" "
.
/ Cisco
CheckPoint
.
. ,
.
CISO
5 - ,
.
75 .
/.
, .
- ) (Hands-on ) (.
400 + 18,000 .
80%- , / , .70
:See Security
" "CISO
, .CISSP
:
.
, ".
.
,
. .
: elvira@see-security.com ,052-8787889 ,03-6122831 ,
:
avi@see-security.com ,054-5222305 :
- ,
) ( , ).(ISC2, ISACA, GIAC, ISSA, SII
) .(IFIS
, .
, - ,
.
.See Security
) (
.1 Information Security Administrator - ISAD -
.2 Information Systems Security Integrator - ISSI -
.3 Information Security Systems Engineer - ISSE -
.4 Information Systems Security Officer - ISSO -
.5 Chief Information Security Officer - CISO -
.6 Information Security Penetration Testing Expert - ISPTE -
) (Information Security Expert ISE -
A InfoSec Incident Expert - ISIE -
B Forensics Information Systems Expert - ISFE -
C Physical Information Systems Security Expert - ISSPE -
D Application Development Security Expert - ADSE -
E InfoSec Systems Project Manager - ISSPM
F Information Security Auditor ISA -
)(
" " " " , . ,
:
. ) (.
. / ) (.
. ) , (.
.1 ) , , , , (Web ,
.2 )`(FW, IDS, IPS, PKI, VPN, Anti's, Spofer, Scanner, Biometrics
.3 )(Hacking & Cyber Warfare
.4 )(Governance: Laws, Regulations, Standards & Business needs
.5 " ) , , (
* ,
, .
4 Maale' Hshachar St. Ramat-Gan 52383, Israel. Tel: +(972)-3-6122831, Fax: +(972)-3-6122593
http://www.see-security.com avi@see-security.com
.1 Thinking Security , 20
, , , .
.2 - Linux Fundamentals Basics Linux .
12
.3 - Hacking Techniques , 48 .
"" .
.Penetration Testing "
.
.4 -Information Security Architecting, Tools & Techniques , 88
, .
, , .
.
.5 - Secured development , ? 8
,
.
.6 - Security Governance ," 24
- : ,ISACA-CISM ,ISC2-CISSP ,SOX ,ISO 27000
,PCI ,DoD- .
.7 - CISO Roles & Functions ? 64
?
? .CISO-
.8 .CISSP
.9. RFP & Security Architecture Design A + B :
.10 : .
.11 /.
:
.
.
.
.
.
DB Hardening .
System Hardening .
) ( ) (
4 Maale' Hshachar St. Ramat-Gan 52383, Israel. Tel: +(972)-3-6122831, Fax: +(972)-3-6122593
http://www.see-security.com avi@see-security.com
16
Track Overview
Track overview: academic requirements, Security
Concepts
Thinking Security
The Art of War: Information security and the Art
of War, The technical landscape
Threats, Vulnerabilities: Digital Threats,
Vulnerabilities, The Human Factor, adversaries,
end users
Attack and defense techniques: attacks types,
methodologies
Defense in Depth: Defensive: Defense in Depth,
trusted computing
InfoSec engineering & common criteria:
Information system security engineering, common
criteria, summary
Linux Basics
Understanding Linux: History, Distributions,
Kernel, File System, Shell, Live CD, VM
Shell: Prompt, Basic Commands, GUI
File Systems & Networking: Environmental
Variable, Process Environment
Shell Redirection: Pipes, Bash Scripting
Overview & Test
Hacking Defined
HD Introduction
HD ToolKit: Linux, Back Track, Development
Environment, Disassembly, Hacking Today
Presentations
Low Technology Reconnaissance: Social
Engineering, Attack tree (Lio), Passive
Reconnaissance
Web base Reconnaissance: Google, Who-Is,
DNS
Google Hacking & API: Advanced Key-Words,
Boolean Search, Google API
Info Gathering Tools: Maltego, Win-Finger-Print,
SAM Spade
Finger Printing: SMTP, SNMP, DNS, Net-Bios,
RPC, LDAP, HTTP, SSH, Banner Grabbing
NetCat: Port Scanning, Banner Grabbing, File
Transfer, Bind Shell, Reverse Shell
Port Scanners: SL, Nmap, Super-Scan, Unicorn
Scan
Traffic Interception & Analyze: Wire-Shark,
TCP-Dump, Com-View,
Traffic Manipulation: Man-In The-Middle, DNS
Spoofing, SSL Spoofing, Skype Spoofing
Buffer Overflow: Scenarios, Frameworks: MetaSploite
4 Maale' Hshachar St. Ramat-Gan 52383, Israel. Tel: +(972)-3-6122831, Fax: +(972)-3-6122593
http://www.see-security.com avi@see-security.com
CISSP
4 Maale' Hshachar St. Ramat-Gan 52383, Israel. Tel: +(972)-3-6122831, Fax: +(972)-3-6122593
http://www.see-security.com avi@see-security.com
' "
- 03-6122593 :
CISO -
:
________
..
.
'
' :
E mail
:
'
) (:
- 400 ) (
________ - ) 10% (
) "(
" , (1) . " ) (2 .
(3) , 30 + (
_____ - ) 18 (.
_____ - .
. .
'
, '
, .See Security
.
.