Designing Security for a Microsoft
Windows 2003 Network |
Exam: 70-298
Course: 2830
Class Outline
Module 1: Introduction to Designing Security
| • |
Introduction to Designing Security for Microsoft Networks |
| • |
Contoso Pharmaceuticals: A Case Study |
| |
|
Module 2: Creating a Plan for Network Security
.
| • |
Introduction to Security Policies |
| • |
Defining a Process for Designing Network Security |
| • |
Creating a Security Design Team |
Lab: 1 Planning a Security Framework
| • |
Describe common elements of security policies and procedures. |
| • |
Create a security design framework by using the Microsoft Solutions Framework (MSF) process model. |
| • |
Create a security design team. |
| |
|
Module 3: Identifying Threats to Network Security
| • |
Introduction to Security Threats |
| • |
Predicting Threats to Security |
Lab: 2 Identifying Threats to Network Security
| • |
Explain common network vulnerabilities and how attackers can exploit them. |
| • |
Predict threats to security by using the STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, and Elevation of privilege) threat model. |
Module 4: Analyzing Security Risks
| • |
Introduction to Risk Management |
| • |
Creating a Risk Management Plan |
Lab: 3 Analyzing Security Threats
| • |
Explain the purpose and operation of risk management. |
| • |
Draft the elements of a risk management plan. |
| |
|
Module 5: Creating a Security Design for Physical
Resources
| • |
Determining Threats and Analyzing Risks to Physical Resources |
| • |
Designing Security for Physical Resources |
Lab: 4 Designing Security for Physical Resources
| • |
Determine threats and analyze risks to physical resources. |
| • |
Design security for physical resources. |
| |
|
Module 6: Creating a Security Design for Computers
| • |
Determining Threats and Analyzing Risks to Computers |
| • |
Designing Security for Computers |
Lab: 5 Designing Security for Computers
| • |
Determine threats and analyze risks to computers. |
| • |
Design security for computers. |
| |
|
Module 7: Creating a Security Design for Accounts
| • |
Determining Threats and Analyzing Risks to Accounts |
| • |
Designing Security for Accounts |
Lab: 6 Designing Security for Accounts
| • |
Determine threats and analyze risks to accounts. |
| • |
Design security for accounts. |
| |
|
Module 8: Creating a Security Design for Authentication
| • |
Determining Threats and Analyzing Risks to Authentication |
| • |
Designing Security for Authentication |
| • |
Determine threats and analyze risks to authentication. |
| • |
Design security for authentication. |
| |
|
Module 9: Creating a Security Design for Data
| • |
Determining Threats and Analyzing Risks to Data |
| • |
Designing Security for Data |
Lab: 8 Designing Security for Data
| • |
Determine threats and analyze risks to data. |
| • |
Design security for data. |
| |
|
Module 10: Creating a Security Design for Data Transmission
| • |
Determining Threats and Analyzing Risks to Data Transmission |
| • |
Designing Security for Data Transmission |
Lab: 9 Designing Security for Data Transmission
| • |
Determine threats and analyze risks to data transmission. |
| • |
Design security for data transmission. |
| |
|
Module 11: Creating a Security Design for Network
Perimeters
| • |
Determining Threats and Analyzing Risks to Network Perimeters |
| • |
Designing Security for Network Perimeters |
Lab: 10 Designing Security for Network Perimeters
| • |
Determine threats and analyze risks to network perimeters. |
| • |
Design security for network perimeters. |
| |
|
Module 12: Designing Responses to Security Incidents
| • |
Introduction to Auditing and Incident Response |
| • |
Designing an Audit Policy |
| • |
Designing an Incident Response Procedure |
| |
|
Lab: 11 Designing an Incident Response Procedure
| • |
Explain the importance of auditing and incident response. |
| • |
Design an auditing policy. |
| • |
Design an incident response procedure. |
| |
|