6580 Courses

This is an essential programme for members of staff whose role involves external meetings, including seeing members of the public in their own home. Based around advice from agencies including the Suzy Lamplugh Trust and the police, this programme takes a sensible look at how to remain safe in the role. 1 What's happening? Issues around us Risks in context 2 Safety fundamentals Risk assessment Dynamic risk assessment Identifying and minimising risks Sensible precautions Use of technology and personal safety Lone working Visits and travelling 3 Harassment and stalking What constitutes harassment and definition of stalking Early warning signals 4 Reporting principles Importance of incidence reporting Taking care of us What next?

Course Overview: It is important that everybody who works in the care environment recognises the signs of potential eating and drinking difficulties and is able to support service users to eat and drink. This course combines both theory and practical sessions to equip those who work in care settings with this knowledge.   Course Aims: Define Dysphagia Identify the main parts of the human mouth and pharynx Recognise signs and symptoms of aspiration Know when to refer a service user Recognise good positions at mealtimes Experience food textures and being fed in different positions Management responsibilities

Duration 4.5 Days 27 CPD hours This course is intended for This is an intermediate course intended for IBM i system administrators, data processing managers and other individuals who implement and manage security, backup and recovery, system software and problem determination. This course is not recommended for s Overview Describe and implement the components of IBM i security, such as user profile, group profile, authorization list, adopted authority and object / resource security Develop a security plan for your Power Systems with IBM i Describe the options to implement security auditing Develop a plan to audit security on your Power Systems with IBM i Describe the IBM i availability products and features and choose the option(s) that best fit your company requirements Describe how to backup and recover user, IBM and full system data on your Power Systems with IBM i Develop a backup and recovery plan for your Power Systems with IBM i Describe the system diagnostics and problem determination procedures available on your Power Systems with IBM i Learn how to plan for, implement, and manage the ongoing operations of an IBM i. Class administration and introductions . IBM i overview and concepts . Management central overview . Security concepts and overview . System values . User security . Resource security . Security auditing . Designing security . IBM i availability overview . Disk management . Backup and recovery strategy using Save/Restore . Journal management . Commitment control overview . Backup and recovery planning . Problem determination . Overview of Systems Director Navigator for i . Introduction to BRMS .

PLEASE CONTACT US FOR FORTHCOMING COURSE DATES COURSE OVERVIEW. DURATION: 1 DAY () LOCATION: HAMPSHIRE THIS FULLY ACCREDITED 2 DAY COURSE IS DESIGNED FOR INDIVIDUALS OR TEAMS WISHING TO RECEIVE RELEVANT MEDICAL TRAINING TO WORK, LIVE AND OPERATE IN HOSTILE OR REMOTE LOCATIONS AROUND THE GLOBE. Delegates are instructed using a ground-up approach, learning techniques and practices that enable confidence and competence in dealing with life potentially changing injuries. Training and risk assessment goes a long way to safeguarding against injuries and threats in any environment however, sometimes the unexpected or unplanned can occur. From vehicle-related incidents and natural disasters to terrorist attacks and armed incidents. It is at this point that trauma and medical skills come to the forefront, allowing an individual to get involved and provide a casualty with a chance of survival, rather than the panic that comes from ignorance, leading to unnecessary fatalities. Our highly experienced and professional instructors provide you with the confidence to be someone who gets involved. Unsure if this is the right course for you? Get in touch with our team to help you choose the best course for your needs. COURSE ELEMENTS. MEDICAL KITS, EQUIPMENT AND PRIOR PLANNING MEASURING VITAL SIGNS AND DIAGNOSIS OF CASUALTIES BALLISTIC AND BLAST TRAUMA RESUSCITATION AND BASIC LIFE-SAVING INCLUDING CPR AND USE OF AUTOMATED EXTERNAL DEFIBRILLATORS MANAGEMENT OF SHOCK STABILISING AND TRANSPORTING CASUALTIES BASIC INTRODUCTION TO MEDICATION DEALING WITH BURNS AND SOFT TISSUE DAMAGE TRIAGE – HOW TO MANAGE AND PRIORITISE MULTIPLE CASUALTIES MANAGEMENT OF AIRWAYS AND USE OF RESPIRATORY AIDS VEHICLE SCENE SAFETY AND EXTRICATION HAEMORRHAGE CONTROL – BLEEDING AND CATASTROPHIC BLEEDING USING TOURNIQUETS AND HOMEOSTATIC AGENTS ENVIRONMENTAL ILLNESS – HEAT, COLD & DEHYDRATION MANAGEMENT OF FRACTURES AND BROKEN BONES

The aim of the CCNSG Safety Passport is to ensure a basic knowledge of health and safety for all site personnel to enable them, after appropriate site induction, to work on site more safely with lower risk to themselves and others. Book via our website @ ESS | Training Courses | Vp ESS (vp-ess.com) or via email at: esstrainingsales@vpplc.com or phone on: 0800 000 346 or via email at: esstrainingsales@vpplc.com or phone on: 0800 000 346

PLEASE CONTACT US FOR FORTHCOMING COURSE DATES COURSE OVERVIEW. DURATION: 1 DAY () LOCATION: HAMPSHIRE THIS 1 DAY COURSE IS DESIGNED FOR INDIVIDUALS WHO HOLD AN ACCREDITED, CURRENT FIRST AID QUALIFICATION. Structured to build upon this qualification and to then take the individual from an emergency services dependant system of training to a level where they are able to deal with incidents and accidents in remote or hostile locations, applying life-saving techniques, with confidence, to casualties suffering from significant life-changing trauma. Many travellers to high risk or elevated risk locations have the peace of mind afforded by medical Insurance and medical evacuation cover, in the reality of an incident that help may be remote access to doctors or nurses, up to the point that the casualty can be safely delivered to an evacuation area or rendezvous. This course is designed with this reality and the experiences of our highly trained and competent professional instructors. The end result is to provide delegates with the techniques to get their casualty to that evacuation point or into a secondary care environment, with the highest possible probability of survival. Unsure if this is the right course for you? Get in touch with our team to help you choose the best course for your needs. COURSE ELEMENTS. TRAUMA KITS, ADVANCED EQUIPMENT AND PRIOR PLANNING CATASTROPHIC BLEEDING CONTROL SIGNIFICANT AND MAJOR INCIDENT MANAGEMENT INCLUDING TRIAGE OF MULTIPLE CASUALTIES MANAGEMENT OF AIRWAYS USING RESPIRATORY AIDS AND EQUIPMENT MANAGEMENT OF SHOCK DUE TO HIGH LEVEL OF BLOOD LOSS STABILISING AND TRANSPORTING CASUALTIES WITH CRITICAL INJURIES

Transport Compliance, Audits, Health and Safety, HGV compliance, PSV compliance, Compliance, Templates, Toolbox Talk, Professional Development, Assistance, Operator Licence assistance,

Duration 2 Days 12 CPD hours This course is intended for Security professionals, System engineers, channel partners, service partners, and end users with at least one year of experience in implementing IT security technologies (Network, Applications, and Systems). Overview This course will enable students to configure, monitor, manage, and optimize the SonicWall Network Security firewall appliances running the new SonicOS 7 to effectively defend against limitless network and cyberthreats and implement SonicWall Boundless Cybersecurity safeguards for seamless protection. Upon completion of the course, students will be able to configure the SonicWall firewall for Secure and Remote Connectivity, Network Optimization, and Advanced Threat Protection. The SonicWall Network Security Administrator (SNSA) for SonicOS 7.0curriculum provides students the required background, knowledge, and hands-on experience to begin designing, implementing, and troubleshooting SonicWall Network Security products. SonicOS 7 is SonicWall?s brand new and most advanced security operating system and is at the core of its latest physical and virtual firewalls, including models from the TZ, NSv, NSa and NSsp Series. SonicOS 7.0 features advanced security, simplified policy management, and critical networking and management capabilities for distributed enterprises and small- to medium-sized businesses with SD-branch support. Course Outline Setting up Basic Firewall Components Unified Threat Management Secure Access Deep Packet Inspection for SSL (DPI-SSL) Content Filtering Services Application Control Scalability and Reliability SD-WAN High Availability Troubleshooting Tools

Duration 4 Days 24 CPD hours This course is intended for This course is intended for security and network administrators who will be responsible for the installation, deployment, tuning, and day-to-day maintenance of the F5 Advanced Web Application Firewall. In this 4 day course, students are provided with a functional understanding of how to deploy, tune, and operate F5 Advanced Web Application Firewall to protect their web applications from HTTP-based attacks. The course includes lecture, hands-on labs, and discussion about different F5 Advanced Web Application Firewall tools for detecting and mitigating threats from multiple attack vectors such web scraping, Layer 7 Denial of Service, brute force, bots, code injection, and zero day exploits. Module 1: Setting Up the BIG-IP System Introducing the BIG-IP System Initially Setting Up the BIG-IP System Archiving the BIG-IP System Configuration Leveraging F5 Support Resources and Tools Module 2: Traffic Processing with BIG-IP Identifying BIG-IP Traffic Processing Objects Overview of Network Packet Flow Understanding Profiles Overview of Local Traffic Policies Visualizing the HTTP Request Flow Module 3: Web Application Concepts Overview of Web Application Request Processing Web Application Firewall: Layer 7 Protection F5 Advanced WAF Layer 7 Security Checks Overview of Web Communication Elements Overview of the HTTP Request Structure Examining HTTP Responses How F5 Advanced WAF Parses File Types, URLs, and Parameters Using the Fiddler HTTP Proxy Module 4: Common Web Application Vulnerabilities A Taxonomy of Attacks: The Threat Landscape What Elements of Application Delivery are Targeted? Common Exploits Against Web Applications Module 5: Security Policy Deployment Defining Learning Comparing Positive and Negative Security Models The Deployment Workflow Policy Type: How Will the Policy Be Applied Policy Template: Determines the Level of Protection Policy Templates: Automatic or Manual Policy Building Assigning Policy to Virtual Server Deployment Workflow: Using Advanced Settings Selecting the Enforcement Mode The Importance of Application Language Configure Server Technologies Verify Attack Signature Staging Viewing Requests Security Checks Offered by Rapid Deployment Defining Attack Signatures Using Data Guard to Check Responses Module 6: Policy Tuning and Violations Post-Deployment Traffic Processing Defining Violations Defining False Positives How Violations are Categorized Violation Rating: A Threat Scale Defining Staging and Enforcement Defining Enforcement Mode Defining the Enforcement Readiness Period Reviewing the Definition of Learning Defining Learning Suggestions Choosing Automatic or Manual Learning Defining the Learn, Alarm and Block Settings Interpreting the Enforcement Readiness Summary Configuring the Blocking Response Page Module 7: Attack Signatures & Threat Campaigns Defining Attack Signatures Attack Signature Basics Creating User-Defined Attack Signatures Defining Simple and Advanced Edit Modes Defining Attack Signature Sets Defining Attack Signature Pools Understanding Attack Signatures and Staging Updating Attack Signatures Defining Threat Campaigns Deploying Threat Campaigns Module 8: Positive Security Policy Building Defining and Learning Security Policy Components Defining the Wildcard Defining the Entity Lifecycle Choosing the Learning Scheme How to Learn: Never (Wildcard Only) How to Learn: Always How to Learn: Selective Reviewing the Enforcement Readiness Period: Entities Viewing Learning Suggestions and Staging Status Violations Without Learning Suggestions Defining the Learning Score Defining Trusted and Untrusted IP Addresses How to Learn: Compact Module 9: Cookies and Other Headers F5 Advanced WAF Cookies: What to Enforce Defining Allowed and Enforced Cookies Configuring Security Processing on HTTP headers Module 10: Reporting and Logging Overview: Big Picture Data Reporting: Build Your Own View Reporting: Chart based on filters Brute Force and Web Scraping Statistics Viewing F5 Advanced WAF Resource Reports PCI Compliance: PCI-DSS 3.0 The Attack Expert System Viewing Traffic Learning Graphs Local Logging Facilities and Destinations How to Enable Local Logging of Security Events Viewing Logs in the Configuration Utility Exporting Requests Logging Profiles: Build What You Need Configuring Response Logging Module 11: Lab Project 1 Lab Project 1 Module 12: Advanced Parameter Handling Defining Parameter Types Defining Static Parameters Defining Dynamic Parameters Defining Dynamic Parameter Extraction Properties Defining Parameter Levels Other Parameter Considerations Module 13: Automatic Policy Building Overview of Automatic Policy Building Defining Templates Which Automate Learning Defining Policy Loosening Defining Policy Tightening Defining Learning Speed: Traffic Sampling Defining Track Site Changes Lesson 14: Web Application Vulnerability Scanner Integration Integrating Scanner Output Importing Vulnerabilities Resolving Vulnerabilities Using the Generic XML Scanner XSD file Lesson 15: Deploying Layered Policies Defining a Parent Policy Defining Inheritance Parent Policy Deployment Use Cases Lesson 16: Login Enforcement and Brute Force Mitigation Defining Login Pages for Flow Control Configuring Automatic Detection of Login Pages Defining Session Tracking Brute Force Protection Configuration Source-Based Brute Force Mitigations Defining Credentials Stuffing Mitigating Credentials Stuffing Lesson 17: Reconnaissance with Session Tracking Defining Session Tracking Configuring Actions Upon Violation Detection Lesson 18: Layer 7 DoS Mitigation Defining Denial of Service Attacks Defining the DoS Protection Profile Overview of TPS-based DoS Protection Creating a DoS Logging Profile Applying TPS Mitigations Defining Behavioral and Stress-Based Detection Lesson 19: Advanced Bot Protection Classifying Clients with the Bot Defense Profile Defining Bot Signatures Defining Proactive Bot Defense Defining Behavioral and Stress-Based Detection Defining Behavioral DoS Mitigation Lesson 20: Form Encryption using DataSafe Targeting Elements of Application Delivery Exploiting the Document Object Model Protecting Applications Using DataSafe The Order of Operations for URL Classification Lesson 21: Review and Final Labs Review and Final Labs

Duration 4 Days 24 CPD hours This course is intended for This is an intermediate -level programming course, designed for experienced Java developers who wish to get up and running on developing well defended software applications. Familiarity with Java and JEE is required and real world programming experience is highly recommended. Ideally students should have approximately 6 months to a year of Java and JEE working knowledge. Overview Students who attend Attacking and Securing Java Web Applications will leave the course armed with the skills required to recognize actual and potential software vulnerabilities and implement defenses for those vulnerabilities. This course begins by developing the skills required to fingerprint a web application and then scan it for vulnerabilities and bugs. Practical labs using current tools and techniques provide students with the experience needed to begin testing their own applications. Students also gain a deeper understanding of how attackers probe applications to understand the runtime environment as well as find potential weaknesses. This course the introduces developers to the most common security vulnerabilities faced by web applications today. Each vulnerability is examined from a Java/JEE perspective through a process of describing the threat and attack mechanisms, recognizing associated vulnerabilities, and, finally, designing, implementing, and testing effective defenses. Practical labs reinforce these concepts with real vulnerabilities and attacks. Students are then challenged to design and implement the layered defenses they will need in defending their own applications. There is an emphasis on the underlying vulnerability patterns since the technologies, use cases, and methods of attack as constantly changing. The patterns remain the same through all the change and flux. This 'skills-centric' course is about 50% hands-on lab and 50% lecture, designed to train attendees in secure web application development, coding and design, coupling the most current, effective techniques with the soundest industry practices. Our engaging instructors and mentors are highly experienced practitioners who bring years of current 'on-the-job' experience into every classroom. This lab-intensive course provides hands-on Java / JEE security training that offers a unique look at Java application security. Beginning with penetration testing and hunting for bugs in Java web applications, you embrace best practices for defensively coding web applications, covering all the OWASP Top Ten as well as several additional prominent vulnerabilities. You will repeatedly attack and then defend various assets associated with fully functional web applications and services, allowing you to experience the mechanics of how to secure JEE web applications in the most practical of terms. Bug Hunting Foundation Why Hunt Bugs? Safe and Appropriate Bug Hunting/Hacking Scanning Web Applications Scanning Applications Overview Moving Forward from Hunting Bugs Removing Bugs Foundation for Securing Applications Principles of Information Security Bug Stomping 101 Unvalidated Data Broken Authentication Sensitive Data Exposure XML External Entities (XXE) Broken Access Control Bug Stomping 102 Security Misconfiguration Cross Site Scripting (XSS) Deserialization/Vulnerable Components Insufficient Logging and Monitoring Spoofing, CSRF, and Redirects Moving Forward with Application Security Applications: What Next? Making Application Security Real