6223 Courses delivered Live Online

Duration 2 Days 12 CPD hours This course is intended for The intended audience for this comprehensive course on Information Assurance and STIGs includes professionals with roles such as: IT professionals - System administrators, network engineers, and security analysts who are responsible for maintaining and securing IT infrastructure and web applications. Developers - Software engineers and web developers who design, implement, and maintain web applications, and need to integrate security best practices throughout the development process. Project teams - Cross-functional teams that collaborate on application development projects, including members from development, testing, and deployment teams. Technical leads - Senior software engineers or architects who oversee technical aspects of projects and ensure the implementation of secure design and coding practices. Project managers - Professionals responsible for planning, executing, and closing projects, ensuring that security requirements are met throughout the project lifecycle. Overview Working in an interactive learning environment, guided by our application security expert, you'll explore: The concepts and terminology behind defensive coding Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets The entire spectrum of threats and attacks that take place against software applications in today's world The role that static code reviews and dynamic application testing to uncover vulnerabilities in applications The vulnerabilities of programming languages as well as how to harden installations The basics of Cryptography and Encryption and where they fit in the overall security picture The requirements and best practices for program management as specified in the STIGS The processes and measures associated with the Secure Software Development (SSD) The basics of security testing and planning Understand the concepts and terminology behind defensive coding Understand Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets Learn the entire spectrum of threats and attacks that take place against software applications in today's world Discuss the role that static code reviews and dynamic application testing to uncover vulnerabilities in applications Understand the vulnerabilities of programming language as well as how to harden installations Understand the basics of Cryptography and Encryption and where they fit in the overall security picture Understand the fundamentals of XML Digital Signature and XML Encryption as well as how they are used within the web services arena Understand the requirements and best practices for program management as specified in the STIGS Understand the processes and measures associated with the Secure Software Development (SSD) Understand the basics of security testing and planning The Information Assurance (STIG) Overview is a comprehensive two-day course that delves into the realm of Information Assurance, empowering you to enhance your cybersecurity skills, understand the essentials of STIGs, and discover cutting-edge web application security practices. This immersive experience is tailored for IT professionals, developers, project teams, technical leads, project managers, testing/QA personnel, and other key stakeholders who seek to expand their knowledge and expertise in the evolving cybersecurity landscape. The course focuses on the intricacies of best practices for design, implementation, and deployment, inspired by the diverse and powerful STIGs, ultimately helping participants become more proficient in application security.The first half of the course covers the foundations of DISA's Security Technical Implementation Guides (STIGs) and learn the ethical approach to bug hunting, while exploring the language of cybersecurity and dissecting real-life case studies. Our expert instrtors will guide you through the importance of respecting privacy, working with bug bounty programs, and avoiding common mistakes in the field.The next half delves into the core principles of information security and application protection, as you learn how to identify and mitigate authentication failures, SQL injections, and cryptographic vulnerabilities. You?ll gain experience with STIG walkthroughs and discover the crucial steps for securing web applications.Throughout the course, you'll also explore the fundamentals of application security and development, including checklists, common practices, and secure development lifecycle (SDL) processes. You?ll learn from recent incidents and acquire actionable strategies to strengthen your project teams and IT organizations. You'll also have the opportunity to explore asset analysis and design review methodologies to ensure your organization is prepared to face future cybersecurity challenges. DISA's Security Technical Implementation Guides (STIGs) The motivations behind STIGs Requirements that the various software development roles must meet Implementing STIG requirements and guidelines Why Hunt Bugs? The Language of CyberSecurity The Changing Cybersecurity Landscape AppSec Dissection of SolarWinds The Human Perimeter Interpreting the 2021 Verizon Data Breach Investigation Report First Axiom in Web Application Security Analysis First Axiom in Addressing ALL Security Concerns Lab: Case Study in Failure Safe and Appropriate Bug Hunting/Hacking Working Ethically Respecting Privacy Bug/Defect Notification Bug Bounty Programs Bug Hunting Mistakes to Avoid Principles of Information Security Secuity Is a Lifecycle Issue Minimize Attack Surface Area Layers of Defense: Tenacious D Compartmentalize Consider All Application States Do NOT Trust the Untrusted Identification and Authentication Failures Applicable STIGs Quality and Protection of Authentication Data Proper hashing of passwords Handling Passwords on Server Side Session Management HttpOnly and Security Headers Lab: STIG Walk-Throughs Injection Applicable STIGs Injection Flaws SQL Injection Attacks Evolve Drill Down on Stored Procedures Other Forms of Server-Side Injection Minimizing Injection Flaws Client-side Injection: XSS Persistent, Reflective, and DOM-Based XSS Best Practices for Untrusted Data Lab: STIG Walk-Throughs Applications: What Next? Common Vulnerabilities and Exposures CWE/SANS Top 25 Most Dangerous SW Errors Strength Training: Project Teams/Developers Strength Training: IT Organizations Cryptographic Failures Applicable STIGs Identifying Protection Needs Evolving Privacy Considerations Options for Protecting Data Transport/Message Level Security Weak Cryptographic Processing Keys and Key Management Threats of Quantum Computing Steal Now, Crack Later Threat Lab: STIG Walk-Throughs Application Security and Development Checklists Checklist Overview, Conventions, and Best Practices Leveraging Common AppSec Practices and Control Actionable Application Security Additional Tools for the Toolbox Strength Training: Project Teams/Developers Strength Training: IT Organizations Lab: Recent Incidents SDL Overview Attack Phases: Offensive Actions and Defensive Controls Secure Software Development Processes Shifting Left Actionable Items Moving Forward Lab: Design Study Review Asset Analysis Asset Analysis Process Types of Application-Related Assets Adding Risk Escalators Discovery and Recon Design Review Asset Inventory and Design Assets, Dataflows, and Trust Boundaries Risk Escalators in Designs Risk Mitigation Options

Duration 2 Days 12 CPD hours This course is intended for Application Consultant Business Analyst Business Process Architect Business Process Owner /Team Lead /Power User Enterprise Architect Executive Program/Project Manager Overview This course will prepare you to: Identify the key functional areas of SAP S/4HANA Finance Describe the capabilities of SAP S/4HANA Finance using selected business processes Understand integration aspects between Finance and Management Accounting Understand the concept of SAP FIORI in the context of SAP S/4HANA Finance This course will prepare you to Identify the key functional areas of SAP S/4HANA Finance Describe the capabilities of SAP S/4HANA Finance using selected business processes Understand integration aspects between Finance and Management Accounting Understand the concept of SAP FIORI in the context of SAP S/4HANA Finance Course Outline Positioning of Finance processes in the SAP S/4HANA Finance solution Financial Accounting: General Ledger Accounting Financial Accounting: Accounts Payable Integration Aspects between materials Management and Financial Accounting Management Accounting: Cost Centers Management Accounting: Internal Orders Financial Accounting: Asset Accounting Financial Accounting: Accounts Receivable Brief Overview of the Central Finance Option

Duration 2 Days 12 CPD hours This course is intended for Die Schulung ist zugeschnitten auf die Bedarfe von: Entwickler:innen, Menschen, die die Rollen Scrum Master oder Product Owner ausüben. Projekt- und Prozessexpertinnen und -experten. Manager:innen sowie Teams, die Kanban für das Managen von täglichen operativen Aktivitäten einsetzen, z. B. Mitglieder von DevOps-Teams. Fachleute aus Bereichen wie z. B. Personal, Finanzen, Marketing, Produktion und Support. Alle, die irgendwo den Arbeitsfluss optimieren möchten. Overview Kanban umfasst sechs Grundpraktiken: Arbeitsfluss visualisieren Work-in-Progress (WIP) begrenzen Arbeitsfluss kontrollieren Prozessregeln explizit machen Feedback-Schleifen implementieren Gemeinsam verbessern, experimentell weiterentwickeln Im Mittelpunkt der Schulung steht das Verständnis der Kanban-Prinzipien und wie man diese mit Hilfe der Kanban-Werkzeuge (Tools) in der Praxis anwendet. Der Kurs bereitet auf die entsprechende Zertifizierung EXIN Kanban Foundation vor. Kanban: Methode zur kontinuierlichen Verbesserung des Arbeitsflusses in kollaborativen Teams. Zentrales Mittel ist die Visualisierung und Begrenzung der parallel in Arbeit befindlichen Aufgaben. Einsatzgebiete: SW-Entwicklung, IT-Betrieb, Produktion. Vorteile von Kanban 1.1 Die Flexibilit„t von Kanban 1.2 Die Kanban-Kultur Kontinuierliche Verbesserung 2.1 Kaizen einfhren 2.2 Prozesse visualisieren und verbessern 2.3 Rahmenbedingungen fr Ver„nderungen Kanban implementieren 3.1 Arbeit visualisieren 3.2 Tickets erstellen 3.3 Work-in-Progress (WIP) begrenzen 3.4 Fluss und Lieferrhythmus kontrollieren 3.5 Priorisierung 3.6 Variabilit„t reduzieren Kanban skalieren 4.1 Kanban mit verteilten Teams 4.2 Kanban in Groáprojekten

Duration 2 Days 12 CPD hours Overview Lead the transformation to Business Agility with SAFe Become a Lean-Agile Leader Understand customer needs with Design Thinking Enable Agile Product Delivery Implement Lean Portfolio Management During this two-day course, attendees gain the knowledge necessary to lead a Lean-Agile enterprise by leveraging the Scaled Agile Framework© (SAFe©) and its underlying principles derived from Lean, systems thinking, Agile development, product development flow, and DevOps.Participants in the class gain insights into mastering Business Agility in order to thrive in the competitive market. They discuss how to establish team and technical agility and organize and re-organize around the flow of value. They also learn and practice the skills for supporting and executing PI Planning events and coordinating multiple Agile Release Trains (ARTs). Participants in the class explore the importance of adopting a customer-centric mindset and design thinking approach to agile product delivery. Learners also develop an understanding for implementing a Lean Portfolio Management function in their enterprise. During this two-day course, attendees gain the knowledge necessary to lead a Lean-Agile enterprise by leveraging the Scaled Agile Framework (SAFe) and its underlying principles derived from Lean, systems thinking, Agile development, product development flow, and DevOps. Participants in the class gain insights into mastering Business Agility in order to thrive in the competitive market. They discuss how to establish team and technical agility and organize and re-organize around the flow of value. They also learn and practice the skills for supporting and executing PI Planning events and coordinating multiple Agile Release Trains (ARTs). Participants in the class explore the importance of adopting a customer-centric mindset and design thinking approach to agile product delivery. Learners also develop an understanding for implementing a Lean Portfolio Management function in their enterprise.

Duration 5 Days 30 CPD hours This course is intended for Typical candidates for this course are IT professionals who deploy Aruba WLAN with advanced features and individuals who need a basic understanding of AirWave. Overview Upon completion of this course, students will be able to:Explain the integration Mobility Masters and Mobility controllersDescribe redundancy giving the user seamless failoverSetup secure guest access using MultizoneExplain the uses and advantages of clusteringDescribe user mobility in the wireless spectrumIntegrate voice over WiFi and give QOSExplain how roles are assigned to users wireless or wiredLearn to setup remote access using RAPs or VIADescribe how to create a mesh clusterLearn the advantages given to AirGroup when leveraged on an Aruba networkIntegrating wire users into the security given to wireless usersLearn how to use AirWave to monitor the health of the networkLearn how to use AirWave to troubleshoot clientExplain AirWave?s Visual RF feature as well as alerts and triggers This course teaches the knowledge, skills and practical experience required to set up and configure advanced features on Aruba WLAN utilizing the AOS 8.X architecture and features. This course includes lectures and labs which provide the technical understanding and hands-on experience of configuring a redundant Mobility Master with two controllers and two APs. Participants will learn how install a redundant Aruba WLAN network with clustering while using many features like Multizone for guest access, voice optimization and tunneled node. This course includes the AirWave management system and troubleshooting commands. The SWDI course provides the underlying material required to prepare candidates for the Aruba Certified Mobility Professional (ACMP) V8 certification exam. IntroductionMobility Master RedundancyMobility Master and MC OperationsMultizoneIntroduction to MC clustersMobilityRole DerivationRemote AccessVoice OptimizationMeshAdministrationOperationsAirGroupTunneled NodeAirWave IntroductionAirWave Network HealthAirWave Client and Device TroubleshootingAirWave VisualRF, Reports and Alerts

Duration 2 Days 12 CPD hours This course is intended for Cybersecurity analysts and engineers and security operations specialists, as well as administrators and product deployers. Overview Successful completion of this instructor-led course with hands-on lab activities should enable you to: Describe the architecture and components of the Cortex XDR family Use the Cortex XDR management console Create Cortex XDR agent installation packages, endpoint groups, and policies Deploy Cortex XDR agents on endpoints Create and manage exploit and malware prevention profiles Investigate alerts and prioritize them using starring and exclusion policies Tune Security profiles using Cortex XDR exceptions Perform and track response actions in the Action Center Perform basic troubleshooting related to Cortex XDR agents Deploy a Broker VM and activate the Local Agents Settings applet Understand Cortex XDR deployment concepts and activation requirements Work with the Customer Support Portal and Cortex XDR Gateway for authentication and authorization This instructor-led training enables you to prevent attacks on your endpoints. After an overview of the Cortex XDR components, the training introduces the Cortex XDR management console and demonstrates how to install agents on your endpoints and how to create Security profiles and policies. The training enables you to perform and track response actions, tune profiles, and work with Cortex XDR alerts. The training concludes with discussions about basic troubleshooting of the agent, the on-premises Broker VM component, and Cortex XDR deployment. Course Outline This class is comprised of the following modules: Module 1 - Cortex XDR Family Overview Module 2 - Cortex XDR Main Components Module 3 - Cortex XDR Mangement Components Module 4 - Profiles and Policy Rules Module 5 - Malware Protection Module 6 - Exploit Protection Module 7 - Cortex XDR Alerts Module 8 - Tuning Policies using Exceptions Module 9 - - Response Actions Module 10 - Basic Agent Troubleshooting Module 11 - Broker VM Overview Module 12 - Deployment Consideration

Duration 5 Days 30 CPD hours This course is intended for Linux Professional Institute Certification (LPIC-2) 201 training is suitable for individuals with roles of: System administrator Network administrator Technician DevOps Overview Upon successful completion of this course, students will be able to: measure hardware resource and network bandwidth, identify and troubleshoot resource problems monitor resource usage to predict future resource needs utilise kernel components that are necessary to specific hardware, hardware drivers, system resources and requirements properly configure a kernel to include or disable specific features of the Linux kernel as necessary manage and/or query a 2.6.x, 3.x or 4.x kernel and its loadable modules query and modify the behaviour of system services at various targets / run levels properly manipulate a Linux system during both the boot process and during recovery mode properly configure and navigate the standard Linux filesystem configure automount filesystems using AutoFS configure and implement software RAID configure kernel options to support various drives create and remove logical volumes, volume groups, and physical volumes use system tools to back up important system data. This course prepares students to take the 201 exam of the LPI level 2 certification. To gain LPIC-2 certification, an individual should have an active LPIC-1 certification. Capacity Planning Measure and Troubleshoot Resource Usage Predict Future Resource Needs Linux Kernel Kernel components Compiling a Linux kernel Kernel runtime management and troubleshooting System Startup Customising system startup System recovery Alternate Bootloaders Filesystem and Devices Filesystem and Devices Maintaining a Linux filesystem Creating and configuring filesystem options Advanced Storage Device Administration Configuring RAID Adjusting Storage Device Access Logical Volume Manager Networking Configuration Basic networking configuration Advanced Network Configuration Troubleshooting network issue System Maintenance Make and install programs from source Backup operations Notify users on system-related issues

Duration 1 Days 6 CPD hours This course is intended for This course provides an introductory overview of the CMMC program for organizational decision makers. Business and IT leaders and IT staff might consider taking this course to learn about the CMMC Model to get a sense of what's required for a successful assessment, and the various ways they can start preparing. Overview In this course, you will identify the key elements and potential impacts of the Cybersecurity Maturity Model Certification (CMMC) program. You will: Identify the crucial elements that are driving the CMMC initiative. Describe the architecture of the CMMC Model and the rationale behind it. Prepare your organization for a successful CMMC Assessment. Identify the roles and responsibilities in the CMMC ecosystem and describe the phases of an Assessment. The Cybersecurity Maturity Model Certification (CMMC), managed by The Cyber AB (formerly known as the CMMC Accreditation Body or the CMMC-AB), is a program through which an organization's cybersecurity program maturity is measured by their initial and ongoing compliance with applicable cybersecurity practices. This course provides a complete review of the key elements of this important program and will entitle you to a CMMC Trailblazer badge.Important: This curriculum product is not considered CMMC-AB Approved Training Material (CATM). This course is not intended as certification preparation and does not qualify students to sit for the CMMC CP certification exam. Identifying What's at Stake Topic A: Identify the Threats and Regulatory Responses Topic B: Identify Sensitive Information Describing CMMC Topic A: Describe the CMMC Model Architecture Topic B: Describe the CMMC Program Getting Ready for a CMMC Assessment Topic A: Scope Your Environment Topic B: Analyze the CMMC Assessment Guides Topic C: Foster a Mature Cybersecurity Culture Topic D: Identify Helpful Documents Topic E: Evaluate Your Readiness Interacting with the CMMC Ecosystem Topic A: Identify the CMMC Ecosystem Topic B: Describe a CMMC Assessment

Duration 5 Days 30 CPD hours This course is intended for Data center systems engineers Field engineers Architects Cisco partners using Cisco Nexus Series switch platforms Overview After taking this course, you should be able to: Describe the platforms that make the Cisco Nexus 9000, 7000, 3000, and 2000 product families Describe Cisco Nexus platform implementations Explain Cisco Nexus platform management Describe Port Channels and Virtual Port Channels Configure First Hop Redundancy protocols Configure security features of Cisco Nexus devices Describe the Cisco Nexus devices routing and forwarding Describe Virtual Extensible LAN (VXLAN) Describe Quality of Service (QoS) on Cisco Nexus Devices Explain system management and monitoring processes Describe Cisco NX-OS programmability Describe Cisco Nexus storage services Configure device aliases and zoning Configure FCoE Configure NPIV and NPV modes The Implementing Cisco NX-OS Switches and Fabrics in the Data Center (DCNX) v1.0 course gives you a detailed understanding of the CiscoNexus switch platform and teach you how to install, configure, and manage Cisco Nexusswitch platforms in a scalable, highly available environment. Through a combination of lectures and hands-on labs, you will learn how to describe various aspects of the Cisco Nexus product families and platforms, including implementation, management, security, programmability and storage. Additionally, you will learn how to configure device aliases and zoning, Fibre Channel over Ethernet (FCoE), and N-Port Identifier Virtualization (NPIV), and N-Port Virtualization (NPV) modes. Course Outline Describing Cisco Nexus Series Switches Describing Cisco Nexus Platforms Implementation Describing Cisco Nexus Platforms Management Describing Port Channels and Virtual Port Channels Configuring First Hop Redundancy Protocols Configuring Cisco Nexus Security Features Describing Cisco NX-OS Routing and Forwarding Describing Virtual Extensible LAN Describing QoS on Cisco Nexus Devices Configuring System Management and Monitoring Describing Cisco NX-OS Programmability Describing Cisco Nexus Storage Services Configuring Fibre Channel Over Ethernet Describing Device Aliases and Zoning Configuring NPIV and NPV Modes

Duration 2 Days 12 CPD hours This course is intended for This course is most valuable for individuals who have been given responsibilities to create or maintain a website. It will also be valuable for new web designers, web developers, and graphic artists who want to extend their skills in creating complete websites. Learning how to use Dreamweaver CC will enable the practitioner to create web pages and sites in the most efficient manner. Overview In this course, you will use Dreamweaver CC to design, build, maintain, and upload websites. You will: ?Identify Dreamweaver fundamentals.?Create websites.?Create web pages.?Insert tables and import content into web pages. ?Create reusable site assets.?Link web pages and send the website to the server. In this course, you will learn to maintain and administer your website with Dreamweaver?s site and page management tools. In this course, you will learn to maintain and administer your website with Dreamweaver?s site and page management tools.