442 Trust courses in Cardiff delivered Live Online

Transform Your Passion Into Performance** 🌟 Are you ready to take the spotlight and make your acting dreams a reality? Whether you're a budding actor or looking to enhance your skills, our 6-week online acting course is designed to help you shine on stage and screen.

Whether you are new to managing, maintaining or monitoring the SCR or you want to refresh your knowledge, this three-hour masterclass will cover everything you need to know and to ensure is in place and will dispel some of the myths and confusion surrounding the SCR.

Duration 5 Days 30 CPD hours This course is intended for This course is designed for individuals who have basic computer user skills and who are interested in obtaining a job as an entry-level IT technician. This course is also designed for students who are seeking the CompTIA A+ certification. Overview Install and configure mobile devices Compare and contrast networking hardware Configure internet connections and wireless networking Troubleshoot hardware and networks Install motherboards, RAM, storage devices, CPUs and add-on cards Deploy and configure connected devices Summarize cloud-computing concepts and virtualization CompTIA A+ certified professionals are proven problem solvers. They support today's core technologies from security to cloud to data management and more. CompTIA A+ is the industry standard for launching IT careers into today's digital world. It is the only industry-recognized credential with performance-based items to prove pros can think on their feet to perform critical IT support tasks in the moment. It is trusted by employers around the world to identify the go-to person in end-point management and technical support roles. CompTIA A+ is regularly re-invented by IT experts to ensure that it validates core skills and abilities demanded in the workplace. Prerequisites While there are no prerequisites for this course, please ensure you have the right level of experience to be successful in this training. Lesson 1: Installing Motherboards and Connectors Topic 1A: Explain Cable Types and Connectors Topic 1B: Install and Configure Motherboards Topic 1C: Explain Legacy Cable Types Lesson 2: Installing System Devices Topic 2A: Install and Configure Power Supplies and Cooling Topic 2B: Select and Install Storage Devices Topic 2C: Install and Configure System Memory Topic 2D: Install and Configure CPUs Lesson 3: Troubleshooting PC Hardware Topic 3A: Apply Troubleshooting Methodology Topic 3B: Configure BIOS/UEFI Topic 3C: Troubleshoot Power and Disk Issues Topic 3D: Troubleshoot System and Display Issues Lesson 4: Comparing Local Networking Hardware Topic 4A: Compare Network Types Topic 4B: Compare Networking Hardware Topic 4C: Explain Network Cable Types Topic 4D: Compare Wireless Networking Types Lesson 5: Configuring Network Addressing and Internet Connections Topic 5A: Compare Internet Connection Types Topic 5B: Use Basic TCP/IP Concepts Topic 5C: Compare Protocols and Ports Topic 5D: Compare Network Configuration Concepts Lesson 6: Supporting Network Services Topic 6A: Summarize Services Provided by Networked Hosts Topic 6B: Compare Internet and Embedded Appliances Topic 6C: Troubleshoot Networks Lesson 7: Summarizing Virtualization and Cloud Concepts Topic 7A: Summarize Client-Side Virtualization Topic 7B: Summarize Cloud Concepts Lesson 8: Supporting Mobile Devices Topic 8A: Set Up Mobile Devices and Peripherals Topic 8B: Configure Mobile Device Apps Topic 8C: Install and Configure Laptop Hardware Topic 8D: Troubleshoot Mobile Device Issues Lesson 9: Supporting Print Devices Topic 9A: Deploy Printer and Multifunction Devices Topic 9B: Replace Print Device Consumables Topic 9C: Troubleshoot Print Device Issues

Duration 5 Days 30 CPD hours This course is intended for This course is designed for individuals who have basic computer user skills and who are interested in obtaining a job as an entry-level IT technician. This course is also designed for students who are seeking the CompTIA A+ certification and who want to prepare for the CompTIA A+ Core 2 220-1102 Certification Exam. Overview Identify, install and configure Windows Operating System features Perform OS installations and upgrades Identify features and tools of macOS Identify features and tools of Linux OS Summarize security measures and protocols Configure SOHO network security Manage security settings Troubleshoot Windows OS problems Explain change-management best practices Implement workstation backup and recover methods Identify the basics of scripting CompTIA A+ certified professionals are proven problem solvers. They support today?s core technologies from security to cloud to data management and more. CompTIA A+ is the industry standard for launching IT careers into today?s digital world. It is the only industry recognized credential with performance-based items to prove pros can think on their feet to perform critical IT support tasks in the moment. It is trusted by employers around the world to identify the go-to person in end point management and technical support roles. CompTIA A+ is regularly re-invented by IT experts to ensure that it validates core skills and abilities demanded in the workplace. This course follows after the A+ Part 1 course and prepares you for the A+ Core 2 exam 220-1101. Prerequisites While there are no prerequisites for this course, please ensure you have the right level of experience to be successful in this training. Lesson 1: Configuring Windows Topic 1A: Configure Windows User Settings Topic 1B: Configure Windows System Settings Lesson 2: Managing Windows Topic 2A: Use Management Consoles Topic 2B: Use Performance and Troubleshooting Tools Topic 2C: Use Command-line Tools Lesson 3: Identifying OS Types and Features Topic 3A: Explain OS Types Topic 3B: Compare Windows Editions Lesson 4: Supporting Windows Topic 4A: Perform OS Installations and Upgrades Topic 4B: Install and Configure Application Topic 4C: Troubleshoot Windows OS Problems Lesson 5: Managing Windows Networking Topic 5A: Manage Windows Networking Topic 5B: Troubleshoot Windows Networking Topic 5C: Configure Windows Security Settings Topic 5D: Manage Windows Shares Lesson 6: Managing Linux and macOS Topic 6A: Identify Features of Linux Topic 6B: Identify Features of macOS Lesson 7: Configuring SOHO Network Security Topic 7A: Explain Attacks, Threats, and Vulnerabilities Topic 7B: Compare Wireless Security Protocols Topic 7C: Configure SOHO Router Security Topic 7D: Summarize Security Measures Lesson 8: Managing Security Settings Topic 8A: Configure Workstation Security Topic 8B: Configure Browser Security Topic 8C: Troubleshoot Workstation Security Issues Lesson 9: Supporting Mobile Software Topic 9A: Configure Mobile OS Security Topic 9B: Troubleshoot Mobile OS and App Software Topic 9C: Troubleshoot Mobile OS and App Security Lesson 10: Using Support and Scripting Tools Topic 10A: Use Remote Access Technologies Topic 10B: Implement Backup and Recovery Topic 10C: Explain Data Handling Best Practices Topic 10D: Identify Basics of Scripting Lesson 11: Implementing Operational Procedures Topic 11A: Implement Best Practice Documentation Topic 11B: Use Proper Communication Techniques Topic 11C: Use Common Safety and Environmental Procedures

Duration 5 Days 30 CPD hours This course is intended for This course is designed for individuals who have basic computer user skills and who are interested in obtaining a job as an entry-level IT technician. This course is also designed for students who are seeking the CompTIA A+ certification and who want to prepare for the CompTIA A+ Core 1 220-1101 Certification Exam and the CompTIA A+ Core 2 220-1102 Certification Exam. Overview On course completion, participants will be able to: Support operating systems. Install and configure PC system unit components and peripheral devices. Install, configure, and troubleshoot display and multimedia devices. Install, configure, and troubleshoot storage devices. Install, configure, and troubleshoot internal system components. Install, configure, and maintain operating systems. Maintain and troubleshoot Microsoft Windows. Explain network infrastructure concepts. Configure and troubleshoot network connections. Manage users, workstations, and shared resources. Implement client virtualization and cloud computing. Implement physical security. Secure workstations and data. Troubleshoot workstation security issues. Support and troubleshoot laptops. Support and troubleshoot mobile devices. Install, configure, and troubleshoot print devices. Implement operational procedures. CompTIA A+ certified professionals are proven problem solvers. They support today's core technologies from security to cloud to data management and more. CompTIA A+ is the industry standard for launching IT careers into today's digital world. It is the only industry recognized credential with performance-based items to prove pros can think on their feet to perform critical IT support tasks in the moment. It is trusted by employers around the world to identify the go-to person in end point management and technical support roles. CompTIA A+ is regularly re-invented by IT experts to ensure that it validates core skills and abilities demanded in the workplace. 1 - Installing Motherboards and Connectors Explain Cable Types and Connectors Install and Configure Motherboards Explain Legacy Cable Types 2 - Installing System Devices Install and Configure Power Supplies and Cooling Select and Install Storage Devices Install and Configure System Memory Install and Configure CPUs 3 - Troubleshooting PC Hardware Apply Troubleshooting Methodology Configure BIOS/UEFI Troubleshoot Power and Disk Issues Troubleshoot System and Display Issues 4 - Comparing Local Networking Hardware Compare Network Types Compare Networking Hardware Explain Network Cable Types Compare Wireless Networking Types 5 - Configuring Network Addressing and Internet Connections Compare Internet Connection Types Use Basic TCP/IP Concepts Compare Protocols and Ports Compare Network Configuration Concepts 6 - Supporting Network Services Summarize Services Provided by Networked Hosts Compare Internet and Embedded Appliances Troubleshoot Networks 7 - Summarizing Virtualization and Cloud Concepts Summarize Client-Side Virtualization Summarize Cloud Concepts 8 - Supporting Mobile Devices Set Up Mobile Devices and Peripherals Configure Mobile Device Apps Install and Configure Laptop Hardware Troubleshoot Mobile Device Issues 9 - Supporting Print Devices Deploy Printer and Multifunction Devices Replace Print Device Consumables Troubleshoot Print Device Issues 10 - Configuring Windows Configure Windows User Settings Configure Windows System Settings 11 - Managing Windows Use Management Consoles Use Performance and Troubleshooting Tools Use Command-line Tools 12 - Identifying OS Types and Features Explain OS Types Compare Windows Editions 13 - Supporting Windows Perform OS Installations and Upgrades Install and Configure Applications Troubleshoot Windows OS Problems 14 - Managing Windows Networking Manage Windows Networking Troubleshoot Windows Networking Configure Windows Security Settings Manage Windows Shares 15 - Managing Linux and macOS Identify Features of Linux Identify Features of macOS 16 - Configuring SOHO Network Security Explain Attacks, Threats, and Vulnerabilities Compare Wireless Security Protocols Configure SOHO Router Security Summarize Security Measures 17 - Managing Security Settings Configure Workstation Security Configure Browser Security Troubleshoot Workstation Security Issues 18 - Supporting Mobile Software Configure Mobile OS Security Troubleshoot Mobile OS and App Software Troubleshoot Mobile OS and App Security 19 - Using Support and Scripting Tools Use Remote Access Technologies Implement Backup and Recovery Explain Data Handling Best Practices Identify Basics of Scripting 20 - Implementing Operational Procedures Implement Best Practice Documentation Use Proper Communication Techniques Use Common Safety and Environmental Procedures

Historical Association webinar series: Direct history teaching Presenters: Mike Hill and Jacob Olivey In this opening session, Jacob and Mike will outline what they mean by direct history teaching. They will explain how this differs from some methods that have become common in history teaching – and why a more direct approach can be more effective, inclusive, and enjoyable for pupils.  To use your corporate recording offer on this webinar please fill in this form: https://forms.office.com/e/Qr1PfgRHSS We are able to offer the webinars in this series at a subsidised cost as the presenters' time has been partially funded by their school, Ark Soane Academy. We are open to developing partnerships across schools and trusts. If you are interested in discussing this further, please contact Mel Jones at melanie.jones@history.org.uk

This workshop will help you create, develop and close business opportunities using a consultative approach and a value-based (not price-led) proposition. Value-based selling means working the way your customer wants to buy, not how you want to sell. It also means: In a transactional sale the customer knows the answer without help from a salesperson (or cannot see why they should choose you), or is prepared to stay with what they have. Customer decision criteria are price and convenience and customers resent time spent with (new) salespeople, mainly because the salesperson adds little or nothing to what the customer already has and just wastes time. In a consultative or value-based sale, by contrast, the customer doesn't know the answer already. The salesperson must take the role of an advisor, not just a 'product promoter'. Customers demand expertise, advice and customisation during the sales process. Often customers insist on multiple meetings with salespeople and others to develop advantages that you can bring and reduce the perceived risk of changing. In this way the salesperson often adds more value than the product or service alone. This very practical workshop will help you use proven strategies and tactics to build, manage and successfully close sustainable business opportunities using a consultative approach and a value-based (not price-led) proposition. This includes: Increased impact of your new sales conversations, presentations and proposals - leading to faster decisions and increased conversion Greater confidence, consistency and professionalism throughout the business development process Enhanced sales questioning skills and techniques, leading to better, faster and more accurate development of customer needs, problems, value and expectations Improve your people, communication, influence and persuasion skills when approaching, consulting or presenting your services and solutions How to build value at all points in the customer's buying process through your knowledge, skills and structured approach Proven ways to gain additional business and referrals from existing customers and contacts, through direct approach and lead generation Being better able differentiate your firm, your solutions, track-record and expertise clearly and accurately with tailored value statements for each stage and for each opportunity Overcome and avoid price-based objections, buying criteria and negotiation 1 Introduction and key principles of value-based selling Introduction and review of pre-course questionnaires - KPIs, personal learning objectives and key principles The main principles of value-based selling and how they benefit you and the customer How value-based selling differs from 'transactional' or 'price-based' selling The stages of the customer's buying cycle - how to identify and work through strategies for each stage The concept of structured and set-piece selling and proposing Presentation by participants: Personal sales improvement goals 2 Value-based selling strategies and skills What is value? How can one move away from a price-led agenda? How to survive and resist price pressure - six techniques A review of key competencies and skills needed for a value-based approach Strategies, case studies and examples with discussion and review Defining your initial value proposition and comparative advantage How best to established the right level of trust, rapport and credibility Planning and practice session: Strategy - mapping a value-based sales process. 3 Connecting skills Research before the meeting and the first few minutes - ways to gain instant rapport and setting the foundation for a successful outcome in a first sales call How to structure an effective first time sales call or meeting - the subtle differences that are important to master How best to differentiate your solutions and build credibility and enthusiasm early or at the start of the buying process Overcoming initial buying resistance and relaxing the prospect; gaining rapport, opening the meeting: PBC (purpose-benefit-check) and gaining agreement to proceed Planning and practice session: Connecting - first meeting with a new contact 4 Consulting - building, developing and influencing client needs Understanding the power of high-impact and third-level questions to influence people based around specific needs and solutions The importance of body language and other personal communication dynamics when asking questions; empathic listening, run-on questions, drawing out skills, summarising, etc Creating a 'disturb' approach to creating needs and opportunities and positioning your solutions Using proven advanced sales questioning techniques with greater skill: Outcome, SPIN and qualification questions 'Decision-making criteria' - tools to help you develop the relevant criteria with the customer and in doing so progress your sales opportunities more effectively Planning and practice session: Questioning skills 5 Convincing - presentation and persuading skills practice Substance and style - selecting the right tone and content to engage and enthuse your prospect Compelling benefits and reducing perceived risk - key messages to deliver Helping the customer choose your proposition - by being convincing, compelling and credible when you present Professional and effective presentation skills - with personal coaching and practice sessions The keys of influence and persuasion and the keys to convincing a new customer to choose you for the first time Planning and practice session: Role-play in presenting your solution 6 Commitment Knowing when and how to close for commitment to the next stage in your sales process, plus ways to ask for commitment professionally and effectively How to isolate, prioritise and answer objections and concerns more openly and accurately, using a consultative not a confrontational approach Deal more effectively and profitably with price objections and reduce buyer's remorse (which can lead to an 'I want to think about it' reaction and cause delay and inertia) Key negotiation skills around the closing process - getting to 'yes' Planning and practice session: Role-play in closing and negotiation skills 7 Assessed role-play - Final practice session Live role-plays There is an option for external participants to be brought in to the live training workshop to take-part in the final assessed role-play or assist with other sessions run during the course. Performance assessment - 'Dragon's Pitch' The final afternoon of the course is an assessed role-play using a prepared scenario and external 'CEO'. The assessment criteria will be agreed prior to the workshop. 8 Workshop summary and close Personal action plan and learning summary

Many leaders and managers working on the front line of inclusion lack emotional support from Local Authority staff or anyone else despite the challenging nature of their work. There is a massive need for active listening, containment and opportunities to problem solve and reflect confidentially with someone trusted. Course Category Peer Support Meeting emotional needs Strategic Work Early Years Description We can tailor make and deliver personalised 1:1 or group support and supervision sessions with a particular focus on emotional support. Many leaders and managers working on the front line of inclusion lack emotional support from Local Authority staff or anyone else despite the challenging nature of their work. There is a massive need for active listening, containment and opportunities to problem solve and reflect confidentially with someone trusted. Some leaders may prefer a group setting for mutual support. We can provide this numbers permitting. Book a set of 3/10/20 sessions or why not set up monthly meetings with a psychologist, head teacher or other suitable practitioner to meet your needs. Testimonials Be the first… Learning Objectives Emotional support in a confidential space To listen and offer practical support Joint problem solving around hard issues To build a trusting relationship Who Is It For ? Headteachers Children Centre Managers Heads of Service Directors Early Years Mangers Course Content Active and supportive listening and exploration of named issues Supportive and safe problem solving Consultation processes In groups to use processes such as Circle of Adults If you liked this you may like: STORY TELLING: STRENGTHENING SKILLS AND KNOWLEDGE OF COMMUNITIES

Duration 3 Days 18 CPD hours This course is intended for This course is intended for security engineers, security architects, and information security professionals. Overview Identify security benefits and responsibilities of using the AWS Cloud Build secure application infrastructures Protect applications and data from common security threats Perform and automate security checks Configure authentication and permissions for applications and resources Monitor AWS resources and respond to incidents Capture and process logs Create and configure automated and repeatable deployments with tools such as AMIs and AWS CloudFormation This course demonstrates how to efficiently use AWS security services to stay secure in the AWS Cloud. The course focuses on the security practices that AWS recommends for enhancing the security of your data and systems in the cloud. The course highlights the security features of AWS key services including compute, storage, networking, and database services. You will also learn how to leverage AWS services and tools for automation, continuous monitoring and logging, and responding to security incidents. Prerequisites We recommend that attendees of this course have: Working knowledge of IT security practices and infrastructure concepts Familiarity with cloud computing concepts Completed AWS Security Essentials and Architecting on AWS courses 1 - Security on AWS Security in the AWS cloud AWS Shared Responsibility Model Incident response overview DevOps with Security Engineering 2 - Identifying Entry Points on AWS Identify the different ways to access the AWS platform Understanding IAM policies IAM Permissions Boundary IAM Access Analyzer Multi-factor authentication AWS CloudTrail 3 - Security Considerations: Web Application Environments Threats in a three-tier architecture Common threats: user access Common threats: data access AWS Trusted Advisor 4 - Application Security Amazon Machine Images Amazon Inspector AWS Systems Manager 5 - Data Security Data protection strategies Encryption on AWS Protecting data at rest with Amazon S3, Amazon RDS, Amazon DynamoDB Protecting archived data with Amazon S3 Glacier Amazon S3 Access Analyzer Amazon S3 Access Points 6 - Securing Network Communications Amazon VPC security considerations Amazon VPC Traffic Mirroring Responding to compromised instances Elastic Load Balancing AWS Certificate Manager 7 - Monitoring and Collecting Logs on AWS Amazon CloudWatch and CloudWatch Logs AWS Config Amazon Macie Amazon VPC Flow Logs Amazon S3 Server Access Logs ELB Access Logs 8 - Processing Logs on AWS Amazon Kinesis Amazon Athena 9 - Security Considerations: Hybrid Environments AWS Site-to-Site and Client VPN connections AWS Direct Connect AWS Transit Gateway 10 - Out-Of-Region Protection Amazon Route 53 AWS WAF Amazon CloudFront AWS Shield AWS Firewall Manager DDoS mitigation on AWS 11 - Security Considerations: Serverless Environments Amazon Cognito Amazon API Gateway AWS Lambda 12 - Threat Detection and Investigation Amazon GuardDuty AWS Security Hub Amazon Detective 13 - Secrets Management on AWS AWS KMS AWS CloudHSM AWS Secrets Manager 14 - Automation and Security by Design AWS CloudFormation AWS Service Catalog 15 - Account Management and Provisioning on AWS AWS Organizations AWS Control Tower AWS SSO AWS Directory Service

Duration 5 Days 30 CPD hours This course is intended for This course is targeted towards the information technology (IT) professional that has a minimum 1 year IT Security and Networking experience. This course would be ideal for Information System Owners, Security Officers, Ethical Hackers, Information Owners, Penetration Testers, System Owner and Managers as well as Cyber Security Engineers. Overview Upon completion, the Certified Professional Ethical Hacker candidate will be able to competently take the CPEH exam. The CPEH certification training enables students to understand the importance of vulnerability assessments and how to implement counter response along with preventative measures when it comes to a network hack. Security Fundamentals Overview The Growth of Environments and Security Our Motivation? The Goal: Protecting Information! CIA Triad in Detail Approach Security Holistically Security Definitions Definitions Relationships Method: Ping The TCP/IP Stack Which Services Use Which Ports? TCP 3-Way Handshake TCP Flags Malware Types of Malware Types of Malware Cont... Types of Viruses More Malware: Spyware Trojan Horses Back Doors DoS DDoS Packet Sniffers Passive Sniffing Active Sniffing Firewalls, IDS and IPS Firewall ? First Line of Defense IDS ? Second Line of Defense IPS ? Last Line of Defense? Firewalls Firewall Types: (1) Packet Filtering Firewall Types: (2) Proxy Firewalls Firewall Types ? Circuit-Level Proxy Firewall Type of Circuit- Level Proxy ? SOCKS Firewall Types ? Application-Layer Proxy Firewall Types: (3) Stateful Firewall Types: (4) Dynamic Packet-Filtering Firewall Types: (5) Kernel Proxies Firewall Placement Firewall Architecture Types ? Screened Host Multi- or Dual-Homed Screened Subnet Wi-Fi Network Types Wi-Fi Network Types Widely Deployed Standards Standards Comparison 802.11n - MIMO Overview of Database Server Review Access Controls Overview Role of Access Control Definitions More Definitions Categories of Access Controls Physical Controls Logical Controls ?Soft? Controls Security Roles Steps to Granting Access Access Criteria Physical Access Control Mechanisms Biometric System Types Synchronous Token Asynchronous Token Device Memory Cards Smart Card Cryptographic Keys Logical Access Controls OS Access Controls Linux Access Controls Accounts and Groups Password & Shadow File Formats Accounts and Groups Linux and UNIX Permissions Set UID Programs Trust Relationships Review Protocols Protocols Overview OSI ? Application Layer OSI ? Presentation Layer OSI ? Session Layer Transport Layer OSI ? Network Layer OSI ? Data Link OSI ? Physical Layer Protocols at Each OSI Model Layer TCP/IP Suite Port and Protocol Relationship Conceptual Use of Ports UDP versus TCP Protocols ? ARP Protocols ? ICMP Network Service ? DNS SSH Security Protocol SSH Protocols ? SNMP Protocols ? SMTP Packet Sniffers Example Packet Sniffers Review Cryptography Overview Introduction Encryption Cryptographic Definitions Encryption Algorithm Implementation Symmetric Encryption Symmetric Downfalls Symmetric Algorithms Crack Times Asymmetric Encryption Public Key Cryptography Advantages Asymmetric Algorithm Disadvantages Asymmetric Algorithm Examples Key Exchange Symmetric versus Asymmetric Using the Algorithm Types Together Instructor Demonstration Hashing Common Hash Algorithms Birthday Attack Example of a Birthday Attack Generic Hash Demo Instructor Demonstration Security Issues in Hashing Hash Collisions MD5 Collision Creates Rogue Certificate Authority Hybrid Encryption Digital Signatures SSL/TLS SSL Connection Setup SSL Hybrid Encryption SSH IPSec - Network Layer Protection IPSec IPSec Public Key Infrastructure Quantum Cryptography Attack Vectors Network Attacks More Attacks (Cryptanalysis) Review Why Vulnerability Assessments? Overview What is a Vulnerability Assessment? Vulnerability Assessment Benefits of a Vulnerability Assessment What are Vulnerabilities? Security Vulnerability Life Cycle Compliance and Project Scoping The Project Overview Statement Project Overview Statement Assessing Current Network Concerns Vulnerabilities in Networks More Concerns Network Vulnerability Assessment Methodology Network Vulnerability Assessment Methodology Phase I: Data Collection Phase II: Interviews, Information Reviews, and Hands-On Investigation Phase III: Analysis Analysis cont. Risk Management Why Is Risk Management Difficult? Risk Analysis Objectives Putting Together the Team and Components What Is the Value of an Asset? Examples of Some Vulnerabilities that Are Not Always Obvious Categorizing Risks Some Examples of Types of Losses Different Approaches to Analysis Who Uses What? Qualitative Analysis Steps Quantitative Analysis ALE Values Uses ALE Example ARO Values and Their Meaning ALE Calculation Can a Purely Quantitative Analysis Be Accomplished? Comparing Cost and Benefit Countermeasure Criteria Calculating Cost/Benefit Cost of a Countermeasure Can You Get Rid of All Risk? Management?s Response to Identified Risks Liability of Actions Policy Review (Top-Down) Methodology Definitions Policy Types Policies with Different Goals Industry Best Practice Standards Components that Support the Security Policy Policy Contents When Critiquing a Policy Technical (Bottom-Up) Methodology Review Vulnerability Tools of the Trade Vulnerability Scanners Nessus SAINT ? Sample Report Tool: Retina Qualys Guard http://www.qualys.com/products/overview/ Tool: LANguard Microsoft Baseline Analyzer MBSA Scan Report Dealing with Assessment Results Patch Management Options Review Output Analysis and Reports Overview Staying Abreast: Security Alerts Vulnerability Research Sites Nessus SAINT SAINT Reports GFI Languard GFI Reports MBSA MBSA Reports Review Reconnaissance, Enumeration & Scanning Reconnaissance Overview Step One in the Hacking ?Life-Cycle? What Information is Gathered by the Hacker? Passive vs. Active Reconnaissance Footprinting Defined Social Access Social Engineering Techniques Social Networking Sites People Search Engines Internet Archive: The WayBack Machine Footprinting Tools Overview Maltego GUI Johnny.Ihackstuff.com Google (cont.) Domain Name Registration WHOIS Output DNS Databases Using Nslookup Traceroute Operation Web Server Info Tool: Netcraft Introduction to Port Scanning Which Services use Which Ports? Port Scan Tips Port Scans Shou