175 Trade courses in Cardiff delivered Live Online

Join the Scrum.org accredited Live Virtual Class - Professional Scrum Product Owner I™ training (PSPO) to master the fundamentals of Product Ownership. Learn how to take your understanding of Scrum frameworks and apply it to maximise product value. Course Description The Professional Scrum Product Owner (PSPO) course goes beyond requirement writing and Product Backlog management. It equips Product Owners with a comprehensive understanding of product management needed to drive value from their products. The PSPO course is Scrum.org certified and delivered by our professional Scrum trainers. We combine real world industry experience with a hands-on practical approach, the result of which is a 98% first-time pass rate. Say goodbye to PowerPoint and join our interactive PSPO training course to gain key practical skillsets and learn how how to implement frameworks immediately to deliver tangibel results. Embrace a product-focused mindset over project-oriented thinking. Bridge business strategy to product execution with Scrum. Recognise the Product Owner's role as an Agile Product Manager. Master Scrum Principles and Empiricism. Understand Product Owner responsibilities within the Scrum Team. Align the team with business strategy, product vision, Product Goal, and Sprint Goal. Communicate business strategy, product vision, and Product Goal effectively. Learn techniques for Product Backlog Management, Release Management, and Forecasting. Identify valuable metrics for tracking value creation and successful product delivery. Employ techniques to engage stakeholders, customers, and Scrum Team members effectively. Why Train With Us? Develop and solidify your knowledge of the Scrum Framework and the accountabilities of being a product owner with our immersive two-day online PSPO course through instruction and team-based exercises. Led by experienced industry professionals and supportive Professional Scrum Trainers & Product Owners, we go beyond powerpoint to offer engaging, hands-on learning experiences. From debunking myths to empowering your Scrum Teams with the right practices, we'll be with you every step of the way - from learning to passing the test and implementing it seamlessly into your job context. Who Should Attend This Course? Ideal for students across industries dealing with complex problem-solving, the Professional Scrum Product Owner course targets three key groups: Aspiring Product Owners seeking to start their career in the field. Experienced Product Owners aiming to enhance their understanding and address misconceptions about Scrum and the Product Owner role. Scrum Masters desiring to become effective coaches for Product Owners, gaining valuable insights from the course. Your Professional Scrum Trainer Meet Jay, founder of Fractal Systems and a dedicated Professional Scrum Trainer. With over 20 years of experience in team and leadership roles, Jay is well-versed in delivering continuous value. His unique teaching approach involves zero PowerPoint and instead relies on engaging, experience-based sessions using techniques from Liberating Structures and Neuro Linguistic Programming. Jay's expertise lies in business transformations, offering training, mentoring, coaching, and consulting to foster success through collaborative efforts. Rapid learning and practical application are the hallmarks of his approach. Jay & the entire Fractal team are invested in your learning journey and are here to support you from start to end, including offering additional valuable support: Free practice assessments for certification success Free resource bundle to master Scrum Free exam revision sheets Free access to an exam simulator Free exam coaching sessions for first-time success Free 1:1 coaching to excel at work Our Clients Our Testimonials

This course is designed to enable candidates to develop the knowledge of the terminology and basic concepts of TOGAF Standard, 10th Edition and principles of Enterprise Architecture. Candidates will also be able to analyze and apply knowledge of TOGAF Standard.

Join the Scrum.org accredited Live Virtual Class - Professional Scrum Product Owner Advanced™ training (PSPO Advanced) to master the role of a Product Owner. Learn how to advance your training of Product Ownership and apply it to deliver even more value. Course Description Agile techniques and the Scrum framework revolutionise project and product delivery, enabling teams to work faster and align closely with business needs. A product owner's role within this delivery is critical. Unlike traditional team managers, Product Owners focus on maximising product value rather than individual elements of project delivery. To excel in this role, product owners must combine business strategy with product vision and delivery roadmaps. The ability to operate within complex environments highlights the need for specific training and qualifications. Product Owner Advanced training is specifically designed to empower experienced Product Owners to deliver greater value. An exceptional Product Owner requires skillsets beyond core Agility and Scrum. These include clear decision-making, vision, communication, and influence. Practical experience is highly valued, and the PSPO 2 course emphasises interactive workshops, discussions, and exercises to provide a comprehensive understanding of the multifaceted Product Owner role. This course elevates existing Product Owners' capabilities, providing a clear path for your professional growth and delivering increased value to product stakeholders. Through collaborative and exploratory training, Product Owners' knowledge and experience will reach new heights, improving various aspects of your role. Key areas covered include: Deepening understanding of the Product Owner role, including product understanding, customer identification, and effective communication of product vision and strategy. Leveraging product vision and strategy to gain a competitive edge. Embracing diverse roles and stances essential for Product Owners. Enhancing stakeholder communication and management skills with a focus on different stakeholder groups. Navigating Agile governance, budgeting, and contracting within the Scrum framework. Scaling the Product Owner role for larger projects and products. By the end of this product owner advanced training, participants will be equipped to excel as Product Owners, driving success and value across their product journey. Why Train With Us? Develop advanced product owner skillsets that build on your existing knowledge of the Scrum framework and product owner accountabilities with our immersive two-day online PSPO Advanced course. Led by experienced industry professionals and support Professional Scrum Trainers & Product Owners, the course values team-based exercises and a hands-on learning experience. We help you grow within your Product Owner role through this advanced training, enabling you to better communicate product vision and strategy to teams, ultimately delivering higher value through projects and products with larger scopes. Who Should Attend This Course? The Professional Product Owner – Advanced course is designed for: Experienced Product Owners, ideally with at least one year of experience in the role Scrum Masters and stakeholders collaborating with Product Owners Your Professional Scrum Trainer Meet Jay, founder of Fractal Systems and a dedicated Professional Scrum Trainer. With over 20 years of experience in team and leadership roles, Jay is well-versed in delivering continuous value. His unique teaching approach involves zero PowerPoint and instead relies on engaging, experience-based sessions using techniques from Liberating Structures and Neuro Linguistic Programming. Jay's expertise lies in business transformations, offering training, mentoring, coaching, and consulting to foster success through collaborative efforts. Rapid learning and practical application are the hallmarks of his approach. Jay & the entire Fractal team are invested in your learning journey and are here to support you from start to end, including offering additional valuable support: Free practice assessments for certification success Free resource bundle to master Scrum Free exam revision sheets Free access to an exam simulator Free exam coaching sessions for first-time success Free 1:1 coaching to excel at work Our Clients Our Testimonials

Getting Started The University of Lancashire offers a comprehensive Master of Laws (LLM) programme meticulously designed to provide a deep and specialised legal education. Renowned for its rigorous curriculum and distinguished faculty, this programme is the preferred choice for experienced professionals and aspiring lawyers seeking to enhance their expertise. Law is a fast-changing and increasingly complex area impacting most professional, commercial and regulatory work aspects. You also don't need a legal background to study the (LLM) Master of Laws. The programme is designed for professionals seeking to expand their knowledge and advance their careers. You'll critically evaluate areas of law and the way they operate in the domestic, European, and international contexts. Through your dissertation, you'll develop critical analytical and research skills that will serve you well in any legal setting. The extensive e-law library facility of UCLAN offers you access to many legal and academic sources from within and outside the jurisdiction, providing you with the resources you need to succeed in your studies. Additionally, you'll be able to enhance your employability skills by gaining additional qualifications in alternative dispute resolution, specifically international arbitration and mediation. With a graduation ceremony held on campus grounds, you'll have the opportunity to celebrate your achievements with your peers, professors, and family members. Don't miss out on this exciting opportunity to take your legal career to the next level. The programme comprises two phases; the first is the Level 7 Diploma in International Business Law, awarded by Qualifi and delivered by the School of Business and Technology London. The second phase is the Master of Laws (LLM) Top-Up, awarded and delivered by the University of Central Lancashire through distance learning. School of Business and Technology London partners with Chestnut Education Group to promote this programme. About Awarding Body Founded in 1828, the University of Central Lancashire is a public university based in Preston, Lancashire, England. Today, UCLAN is one of the largest in the United Kingdom, with a student and staff community of nearly 38,000. At present, the University has academic partners in all regions of the globe, and it is on a world stage that the first-class quality of its education was first recognised. In 2010, UCLAN became the first UK modern Higher Education institution to appear in the QS World University Rankings. In 2018, the Centre for World University Rankings estimated Central Lancashire to be in the top 3.7 per cent of all global universities, highlighting the growth the University has made in offering students real-world learning experiences and reflecting the University's extensive pool of academic talent. Ranked in the top 7% of universities worldwide. Student Communities from more than 100 countries WES Recognised Qualifi is a UK Government (Ofqual.gov.uk) regulated awarding organisation and has developed a reputation for supporting relevant skills in a range of job roles and industries, including Leadership, Enterprise and Management, Hospitality and catering, Health and Social Care, Business Process Outsourcing and Public Services. Qualifi is also a signatory to BIS international commitments of quality. The following are the key facts about Qualifi. Regulated by Ofqual.gov.uk World Education Services (WES) Recognised Assessment Assignments and Project No examinations Entry Requirements Aspiring candidates who do not fulfil the above criterion but have sufficient managerial experience can undergo evaluation for an Advanced Entry. If English is not your first language, you will be expected to demonstrate a certificated level of proficiency of at least IELTS 6.5 (Academic level) or equivalent English Language qualification. Learners must request before enrolment to interchange unit(s) other than the preselected units shown in the SBTL website because we need to make sure the availability of learning materials for the requested unit(s). SBTL will reject an application if the learning materials for the requested interchange unit(s) are unavailable. Learners are not allowed to make any request to interchange unit(s) once enrolment is complete. Structure Phase 1 - QUALIFI Level 7 Diploma in International Business Law Programme Structure The QUALIFI Level 7 Diploma in International Business Law is made up of 120 credits, which equates to 1200 hours of TQT. Mandatory Units International Trade Law Unit Reference K/617/4822 TQT : 200 Credits : 20 In this unit, learners will be able to understand international sales transactions, environmental analysis while doing international trade, legal issues and financial forecasting processes. Commercial Trust Law Unit Reference M/617/4823 TQT : 200 Credits : 20 This unit explores the law of trusts internationally, comparing doctrine in different jurisdictions and exploring the theoretical implications of such differences. Industrial and Intellectual Property Law Unit Reference T/617/4824 TQT : 200 Credits : 20 This unit aims to introduce learners to knowledge, ability and critical understanding of regulatory and legislative requirements relating to industrial and Intellectual property laws. Law of Financial Crimes Unit Reference T/617/4824 TQT : 200 Credits : 20 Learners will be introduced to current debates, theories and legal practices in the law of financial crimes, such as statutory framework in the financial services regulations and capital market, fraud and theft act, and criminal law regulations. Company Law Unit Reference F/617/4826 TQT : 200 Credits : 20 This unit aims to inform learners about the English Law of registered companies, including private and public limited companies. Legal Research and Research Methods Unit Reference J/617/4827 TQT :100 Credits :10 Learners can cover key topics relating to research problems, conducting literature reviews, referencing, data collection and analysis techniques, and drawing conclusions from the analysed data. Optional Units Corporate Governance - Principles and Practices Unit Reference L/617/4828 TQT :100 Credits :10 This unit aims to develop learners' understanding, knowledge, and skills relating to the governing body's role, principles of corporate governance, various models and theories affecting corporate governance development, management functions, and development of governance codes, regulations and benefits of good governance. International Commercial Arbitration Unit Reference L/650/7069 TQT : 100 Credits :10 This unit aims for learners to explore the regulatory role of arbitration as a method of supra-national dispute resolution using comparative perspectives to explain contrasting regulation methods.   Phase 2 - Master of Laws (LLM) Top-Up Programme Structure Dissertation Module Delivery Methods The programme comprises two phases; the first is the Level 7 Postgraduate Diploma in Law awarded by Qualifi and delivered by the School of Business and Technology London. The School of Business and Technology London offers flexible learning methods, including online and blended learning, allowing students to choose the mode of study that suits their preferences and schedules. The programme is self-paced and facilitated through an advanced Learning Management System. Students can easily interact with tutors through the SBTL Support Desk Portal System for course material discussions, guidance, assistance, and assessment feedback on assignments. School of Business and Technology London provides exceptional support and infrastructure for online and blended learning. Students benefit from dedicated tutors who guide and support them throughout their learning journey, ensuring a high level of assistance. The second phase is the Master of Laws (LLM) Top-Up, awarded and delivered by the University of Central Lancashire through distance learning. The University of Central Lancashire (UCLan) offers a range of distance learning options for students who require the flexibility to study remotely. These options include online courses, blended learning, and supported distance learning. UCLan's distance learning courses are designed to provide students with the same high-quality education as on-campus courses, with access to resources such as video lectures, online discussion forums, and interactive assessments. The University also provides a range of support services for distance learning students, including academic support, technical support, and access to the University's library and online resources. Resources and Support School of Business & Technology London is dedicated to offering excellent support on every step of your learning journey. School of Business & Technology London occupies a centralised tutor support desk portal. Our support team liaises with both tutors and learners to provide guidance, assessment feedback, and any other study support adequately and promptly. Once a learner raises a support request through the support desk portal (Be it for guidance, assessment feedback or any additional assistance), one of the support team members assign the relevant to request to an allocated tutor. As soon as the support receives a response from the allocated tutor, it will be made available to the learner in the portal. The support desk system is in place to assist the learners adequately and streamline all the support processes efficiently. Quality learning materials made by industry experts is a significant competitive edge of the School of Business & Technology London. Quality learning materials comprised of structured lecture notes, study guides, practical applications which includes real-world examples, and case studies that will enable you to apply your knowledge. Learning materials are provided in one of the three formats, such as PDF, PowerPoint, or Interactive Text Content on the learning portal. How does the Online Learning work at SBTL? We at SBTL follow a unique approach which differentiates us from other institutions. Indeed, we have taken distance education to a new phase where the support level is incredibly high.Now a days, convenience, flexibility and user-friendliness outweigh demands. Today, the transition from traditional classroom-based learning to online platforms is a significant result of these specifications. In this context, a crucial role played by online learning by leveraging the opportunities for convenience and easier access. It benefits the people who want to enhance their career, life and education in parallel streams. SBTL's simplified online learning facilitates an individual to progress towards the accomplishment of higher career growth without stress and dilemmas. How will you study online? With the School of Business & Technology London, you can study wherever you are. You finish your program with the utmost flexibility. You will be provided with comprehensive tutor support online through SBTL Support Desk portal. How will I get tutor support online? School of Business & Technology London occupies a centralised tutor support desk portal, through which our support team liaise with both tutors and learners to provide guidance, assessment feedback, and any other study support adequately and promptly. Once a learner raises a support request through the support desk portal (Be it for guidance, assessment feedback or any additional assistance), one of the support team members assign the relevant to request to an allocated tutor. As soon as the support receive a response from the allocated tutor, it will be made available to the learner in the portal. The support desk system is in place to assist the learners adequately and to streamline all the support process efficiently. Learners should expect to receive a response on queries like guidance and assistance within 1 - 2 working days. However, if the support request is for assessment feedback, learners will receive the reply with feedback as per the time frame outlined in the Assessment Feedback Policy.

Overview This is a 1 Day Product course and as such is designed for participants who wish to improve the depth of their technical knowledge surrounding Exotic Options. Who the course is for Equity and Derivative sales Equity and Derivative traders Equity & Derivatives structurers Quants IT Equity portfolio managers Insurance Company investment managers Risk managers Course Content To learn more about the day by day course content please click here To learn more about schedule, pricing & delivery options, book a meeting with a course specialist now

At Noble, we deliver the SLII programme as either an in person or virtual programme. Option 1 - a two-day session, in person at North Scare - 18th & 19th February, 9am to 4pm. Option 2 - 5 x two & a half hour virtual sessions via Zoom. We blend self-directed learning, online discussions, interactive exercises, reflection, and offline assignments with a comprehensive personal leadership assessment/360 feedback tool. Programme Overview Create individual success with a situational approach to leadership. With business moving at a blistering pace, there’s more pressure than ever for leaders to be effective at managing successful teams. But often, they don’t have the skills to be the agile, adaptive leaders they need to be, and they struggle to build meaningful connections and achieve results. It’s not for lack of effort or interest. Research has shown that most leaders are limited to a single leadership style—so they don’t know how to unleash the potential of their people as their needs shift. Leaders need to learn how to lead situationally. Blanchard’s SLII® empowers leaders to become adaptive—a requirement for our uncertain times. Backed by 40 years of research and an unmatched track record of results, The SLII Experience™ teaches your leaders how to lead situationally by giving their people the right support and direction at the right time. SLII enables leaders to build deeper relationships with their people, making every day more inspiring, motivating, and meaningful.

This course covers import documentation and procedures, commercial considerations, the importance of your purchase order, calculating VAT and duty, and how to reduce import customs clearance delays.

3 Day Intensive Forex Trader Training Programme.

Certificate in Business and Commercial Law (CBCL) Why Attend This course is designed for professionals with little or no prior legal background but who are required to make organizational decisions involving legal matters. It will provide participants with the fundamental principles of commercial law, including commercial contracts and negotiation, sale of goods, intellectual property rights and employee relations. It also covers all the legal aspects of setting up a business, running a business and closing a business Participants will gain an in-depth understanding of international commercial law with emphasis on the common law system. Participants will have the opportunity to learn and analyze key legal issues regarding contracts and the business as a whole which they are likely to encounter within their organization.  Course Methodology In this interactive training course participants will frequently work in pairs as well as in larger groups to complete exercises as well as regional and international case studies. Course Objectives By the end of the course, participants will be able to: Apply legal rules and principles to specific commercial situations through consideration of relevant case law Negotiate commercial contracts complying with commercial and legal requirements Increase profitability within their organization by selecting appropriate methods of distribution of goods Recognize and analyze how intellectual property rights affect their organization Evaluate and modify organizational employment practices complying with labor law requirements Target Audience This course is suitable for those with little or no formal training in commercial law yet would be required to understand the fundamentals of commercial law as it may directly impact their work. It will particularly benefit directors and executives who have direct responsibility for legal decisions within the organization. In-house council new to the region, and those working within a legal department, will also find this course highly beneficial. Target Competencies Drafting Contracts Contract Negotiation Understanding Commercial Terms Understanding Employment Law Implementing Organizational Employment Practices Understanding Intellectual Property Understanding corporate restructuring Understanding the effect of breach of commercial contract terms Note The Dubai Government Legal Affairs Department has introduced a Continuing Legal Professional Development (CLPD) programme to legal consultants authorised to practise through a licensed firm in the Emirate of Dubai. We are proud to announce that the Dubai Government Legal Affairs Department has accredited EMG Associates as a CLPD provider. In addition, all our legal programmes have been approved. This PLUS Specialty Training Legal course qualifies for 4 elective CLPD points. Overview of commercial & business law Areas of commercial and business law Types of commercial contracts Commercial contracts in the civil law and common law systems Sources of English law Civil law v Common law Civil law in the GCC Formalities for a binding contract Elements required for an enforceable contract Rules for contract interpretation implied terms v express terms identifying risks and how to minimise risks Structure of a commercial contract Preliminary documents in international transactions Memorandum of Understanding/ Heads of Terms. Are they legally binding? Commercial implications Boilerplate/ miscellaneous provisions- the important but forgotten clauses- beware! Force majeure v Frustration Notices Set off No waiver Entire Agreement/ non- reliance clause Times is of the essence Assignment v Novation Governing law Common mistakes in choice of law Jurisdiction clause Exclusive v Non-exclusive Factors in deciding the jurisdiction clause International dispute resolution Litigation Importance of Alternative Dispute Resolution (ADR) Arbitration Mediations Conciliation Negotiation Remedies for breach of contract Damages Specific performance Injunctions Advantages and disadvantages of different business forms Types of business vehicles Sole trader Partnerships Limited Liability Partnerships Companies Cross Border Transactions Distributorship Agency Joint Venture Acquisitions Share purchase v Business purchase Apportioning risks and liabilities through warranties and indemnities Negotiating warranties and indemnities Corporate insolvency Tests identifying insolvency Consequence for directors who fail to react to insolvency Types of insolvency Administration Receivership Creditor Voluntary Liquidation Compulsory Liquidation Commercial Tort Tort of negligence Defamation Libel Slander Recent case law on defamation Managing risk Prevention is better than cure: Effective risk management Intellectual Property Rights management Types of Intellectual Property copyright trademark patent design rights confidential information Assignment v Granting a license The law of passing off Intellectual Property in the GCC Employment law issues in the common law systems and the GCC Types of employment contracts Grounds for dismissal Wrongful dismissal Redundancy Unfair dismissal Commercial real estate in the GCC Leasehold Freehold

Duration 5 Days 30 CPD hours This course is intended for This course is targeted towards the information technology (IT) professional that has a minimum 1 year IT Security and Networking experience. This course would be ideal for Information System Owners, Security Officers, Ethical Hackers, Information Owners, Penetration Testers, System Owner and Managers as well as Cyber Security Engineers. Overview Upon completion, the Certified Professional Ethical Hacker candidate will be able to competently take the CPEH exam. The CPEH certification training enables students to understand the importance of vulnerability assessments and how to implement counter response along with preventative measures when it comes to a network hack. Security Fundamentals Overview The Growth of Environments and Security Our Motivation? The Goal: Protecting Information! CIA Triad in Detail Approach Security Holistically Security Definitions Definitions Relationships Method: Ping The TCP/IP Stack Which Services Use Which Ports? TCP 3-Way Handshake TCP Flags Malware Types of Malware Types of Malware Cont... Types of Viruses More Malware: Spyware Trojan Horses Back Doors DoS DDoS Packet Sniffers Passive Sniffing Active Sniffing Firewalls, IDS and IPS Firewall ? First Line of Defense IDS ? Second Line of Defense IPS ? Last Line of Defense? Firewalls Firewall Types: (1) Packet Filtering Firewall Types: (2) Proxy Firewalls Firewall Types ? Circuit-Level Proxy Firewall Type of Circuit- Level Proxy ? SOCKS Firewall Types ? Application-Layer Proxy Firewall Types: (3) Stateful Firewall Types: (4) Dynamic Packet-Filtering Firewall Types: (5) Kernel Proxies Firewall Placement Firewall Architecture Types ? Screened Host Multi- or Dual-Homed Screened Subnet Wi-Fi Network Types Wi-Fi Network Types Widely Deployed Standards Standards Comparison 802.11n - MIMO Overview of Database Server Review Access Controls Overview Role of Access Control Definitions More Definitions Categories of Access Controls Physical Controls Logical Controls ?Soft? Controls Security Roles Steps to Granting Access Access Criteria Physical Access Control Mechanisms Biometric System Types Synchronous Token Asynchronous Token Device Memory Cards Smart Card Cryptographic Keys Logical Access Controls OS Access Controls Linux Access Controls Accounts and Groups Password & Shadow File Formats Accounts and Groups Linux and UNIX Permissions Set UID Programs Trust Relationships Review Protocols Protocols Overview OSI ? Application Layer OSI ? Presentation Layer OSI ? Session Layer Transport Layer OSI ? Network Layer OSI ? Data Link OSI ? Physical Layer Protocols at Each OSI Model Layer TCP/IP Suite Port and Protocol Relationship Conceptual Use of Ports UDP versus TCP Protocols ? ARP Protocols ? ICMP Network Service ? DNS SSH Security Protocol SSH Protocols ? SNMP Protocols ? SMTP Packet Sniffers Example Packet Sniffers Review Cryptography Overview Introduction Encryption Cryptographic Definitions Encryption Algorithm Implementation Symmetric Encryption Symmetric Downfalls Symmetric Algorithms Crack Times Asymmetric Encryption Public Key Cryptography Advantages Asymmetric Algorithm Disadvantages Asymmetric Algorithm Examples Key Exchange Symmetric versus Asymmetric Using the Algorithm Types Together Instructor Demonstration Hashing Common Hash Algorithms Birthday Attack Example of a Birthday Attack Generic Hash Demo Instructor Demonstration Security Issues in Hashing Hash Collisions MD5 Collision Creates Rogue Certificate Authority Hybrid Encryption Digital Signatures SSL/TLS SSL Connection Setup SSL Hybrid Encryption SSH IPSec - Network Layer Protection IPSec IPSec Public Key Infrastructure Quantum Cryptography Attack Vectors Network Attacks More Attacks (Cryptanalysis) Review Why Vulnerability Assessments? Overview What is a Vulnerability Assessment? Vulnerability Assessment Benefits of a Vulnerability Assessment What are Vulnerabilities? Security Vulnerability Life Cycle Compliance and Project Scoping The Project Overview Statement Project Overview Statement Assessing Current Network Concerns Vulnerabilities in Networks More Concerns Network Vulnerability Assessment Methodology Network Vulnerability Assessment Methodology Phase I: Data Collection Phase II: Interviews, Information Reviews, and Hands-On Investigation Phase III: Analysis Analysis cont. Risk Management Why Is Risk Management Difficult? Risk Analysis Objectives Putting Together the Team and Components What Is the Value of an Asset? Examples of Some Vulnerabilities that Are Not Always Obvious Categorizing Risks Some Examples of Types of Losses Different Approaches to Analysis Who Uses What? Qualitative Analysis Steps Quantitative Analysis ALE Values Uses ALE Example ARO Values and Their Meaning ALE Calculation Can a Purely Quantitative Analysis Be Accomplished? Comparing Cost and Benefit Countermeasure Criteria Calculating Cost/Benefit Cost of a Countermeasure Can You Get Rid of All Risk? Management?s Response to Identified Risks Liability of Actions Policy Review (Top-Down) Methodology Definitions Policy Types Policies with Different Goals Industry Best Practice Standards Components that Support the Security Policy Policy Contents When Critiquing a Policy Technical (Bottom-Up) Methodology Review Vulnerability Tools of the Trade Vulnerability Scanners Nessus SAINT ? Sample Report Tool: Retina Qualys Guard http://www.qualys.com/products/overview/ Tool: LANguard Microsoft Baseline Analyzer MBSA Scan Report Dealing with Assessment Results Patch Management Options Review Output Analysis and Reports Overview Staying Abreast: Security Alerts Vulnerability Research Sites Nessus SAINT SAINT Reports GFI Languard GFI Reports MBSA MBSA Reports Review Reconnaissance, Enumeration & Scanning Reconnaissance Overview Step One in the Hacking ?Life-Cycle? What Information is Gathered by the Hacker? Passive vs. Active Reconnaissance Footprinting Defined Social Access Social Engineering Techniques Social Networking Sites People Search Engines Internet Archive: The WayBack Machine Footprinting Tools Overview Maltego GUI Johnny.Ihackstuff.com Google (cont.) Domain Name Registration WHOIS Output DNS Databases Using Nslookup Traceroute Operation Web Server Info Tool: Netcraft Introduction to Port Scanning Which Services use Which Ports? Port Scan Tips Port Scans Shou