RSA CUSTOMER EDUCATION CATALOG

(1)

S e r v i c e s C a t a l o g – Q 3 2 0 1 5

(2)

COURSE DESCRIPTION INDEX

Identity and Access Management

RSA Access Manager Administration, Installation and Configuration ... 9

RSA Identity Management and Governance Administration ... 11

RSA Business Role Manager ... 13

RSA Data Access Governance Basics ... 15

RSA Identity Management and Governance End User Training Service ...16

RSA Authentication Manager Administration ...18

RSA Authentication Manager Installation and Configuration ... 20

RSA SecurID Help Desk Basics ... 22

RSA Authentication Manager 6.1 to 8.x Data Migration ... 24

Migrating RSA Authentication Manager v6.1 to a v8.1 Hardware Appliance ... 24

RSA Authentication Manager 7.1 to 8.x Data Migration ... 26

Migrating RSA Authentication Manager v7.1 to a v8.1 Hardware Appliance ... 26

Governance, Risk and Compliance Getting Started with Enterprise Risk Management ... 28

Getting Started with Policy and Compliance Management ... 30

RSA Archer Administration ... 32

RSA Archer Advanced Administration ... 34

RSA Archer Custom End-User Training Service ... 36

Security Operations RSA Data Loss Prevention Administration ... 38

RSA ECAT Analysis Fundamentals ... 40

RSA Security Analytics Administration ... 42

RSA Security Analytics for Analysts ... 44

RSA Security Analytics for Logs ... 46

RSA Security Operations Management Solution Basics ... 48

Anti Fraud RSA Adaptive Authentication On-Premise Administration ... 50

RSA Adaptive Authentication for eCommerce Back Office Tools ... 52

RSA Adaptive Authentication 12 Migration ... 54

RSA Web Threat Detection Essentials ... 56

Cyber Defense RSA Intelligence-Driven Event Analysis ... 58

RSA Incident Handling and Response ... 60

RSA Threat Intelligence... 62

RSA Malware Analysis ... 64

RSA SOC Simulation Challenge ... 66

RSA Cyber Defense Workshop ... 67

Security Concepts and Principles RSA Security Awareness Program ... 69

RSA CISSP Certification Boot Camp ... 71

(3)

RSA, The Security Division of EMC 3

The Value of

Professional Education

Investing in training and education makes good business sense and can have a profound impact on your team. It enables an organization to: – Decrease operating costs and

increase productivity

– Reduce technical infrastructure costs

– Increase effectiveness of your technology investment

– Reduce your organization’s overall information risk

How to Contact Us

Online www.emc.com/rsa-training E-mail [email protected] Phone: 800-995-5095 International: 781-515-7700 Fax: 781-515-6630 174 Middlesex Turnpike

Bedford, Massachusetts 01730 USA

ENABLE YOUR TEAM TODAY FOR TOMORROW’S IT

SECURITY CHALLENGES

RSA Education Services provides practical and relevant courses that support security learning across an enterprise. Properly trained personnel are the lifeblood of any organization. As you implement new technologies, add new functionality to existing systems or orient new staff, education is a key element. Consistent and focused training helps maintain the security of your computing environment, improves the end user experience and increases productivity and job

satisfaction among your staff.

FLEXIBLE DELIVERY OPTIONS

Instructor-Led Training (ILT)

Instructor-led classes offer comprehensive training in a fully- equipped RSA Learning Center. Public classes give you the opportunity to interact with your peers, further enhancing your learning experience by sharing real-world tips and best practices.

Video Instructor Led Training (Video ILT)

Video ILT courses combine the best of instructor-delivered lectures and presentations with the convenience and flexibility of an on-demand learning format. Video ILT programs are delivered in streaming format and can be viewed by the student directly on their own computer with an internet connection.

Online Instructor-Led Training (Online ILT)

Online ILT provides real-time, interactive, virtual training where students participate online to access the instructor-led virtual classroom. Lecture, discussion, questions and answers, and lab exercises makes this a flexible training experience.

eLearning

Self-paced eLearning provides you with training that is generally one to three hours in length giving you the convenience of learning at your own pace.

(4)

RSA PRODUCT TRAINING

Our worldwide training services are targeted to serve professionals who are responsible for installing, supporting and administering the entire range of RSA solutions.

Developed for security administration and network operations, the product courses offer a variety of teaching methods including

traditional instructor-led and virtual (“on line”) instructor-led training, video-based learning, and elearning. Instructor-led courses can also be made available as on-site engagements at a customer’s location. Each of these options gives you the flexibility to select a learning mode that best fits your learning style, time constraints and budget.

RSA SECURITY AWARENESS PROGRAMS

RSA’s Security Awareness programs offer ways to test and measure vulnerability, then provide essential education to fill any gaps. Our Security Awareness training can target virtually every level of an organization – raising awareness and offering concrete steps to effect change, thus helping to prevent attackers from gaining a foothold through unsuspecting targets.

See individual program descriptions for further details.

CYBER DEFENSE TRAINING COURSES FOR

SECURITY ANALYSTS

The threat landscape is becoming more complicated every day. With the advent and enhancement of technical innovations like cloud computing, social media, mobile devices and big data, organizations are finding it very difficult to keep ahead of advanced threats. Security products, while necessary, can only go so far in identifying and mitigating potential breaches. A skilled security analyst is key to the success of any Information Security strategy.

The RSA Cyber Defense Training courses address these challenges by offering comprehensive training on analytic processes and techniques that are independent of a specific attack technique or security

product. These courses focus on analysis skills that are directly relevant to the current security climate. The curriculum also provides a path for security analysts to advance their skills by offering an approach based on roles that are generally consistent with the roles and responsibilities of a SOC.

(5)

RSA, The Security Division of EMC 5

Benefits of Onsite

Training

Substantial cost Savings – Save up to 40% compared to

individual public class rates Less student down time – Reduce travel concerns and

out-of-office time Convenient, Flexible

Scheduling

– Your training can be scheduled at the time and location most convenient for you

Benefits of Online

Instructor-led Training

– No travel cost or travel time – Live instructor with whom you

can interact and ask questions – Same content as the classroom

version of the course with hands-on labs to reinforce concepts

– Modest connectivity

requirements allow participation from anywhere

– Publicly-scheduled classes for individual participants or Private sessions for organizations that prefer virtual training for their dispersed teams

ONSITE TRAINING

With RSA Onsite training, you and your people aren’t locked into a pre-existing schedule of public classes at a pre-existing location. RSA Education Services can work with you to schedule your training at the time and location that’s most convenient for you. That means training doesn’t have to conflict with your other business priorities – and it can be timed precisely to support your RSA implementation.

RSA Onsite training rates can save an organization up to 40% when compared to individual student rates. Additional cost savings are realized by eliminating the need for student travel. What’s more, since your students are not preparing for trips – or making their way back from airports after training – they are likely to be more productive and accessible in the days surrounding their training experience.

ONLINE INSTRUCTOR-LED TRAINING

What is Online ILT?

Online ILT is real-time virtual training conducted remotely by RSA instructors. It’s virtual training that mirrors the classroom experience with:

Live web casts. During scheduled web casts, students communicate

with their RSA instructor and other students, ask questions, and experience RSA products through live demonstration.

Hands-on labs. Students access a remote lab environment that

enables them to interact with RSA software and practice what they’ve learned.

Course materials. Course materials are shipped to participants in

advance of the class. Just like in a classroom, students use these materials under the guidance of the instructor.

Instructor guidance. During class time, students have the benefit of

the instructor’s expertise to assist during the live web casts and Hands-on Labs. During lab time, the instructor can shadow students by virtually looking over the shoulder of each student to evaluate their progress and provide assistance.

RSA LEARNING ASSESSMENTS

As organizations increasingly depend on technology to manage their businesses, the need for employees to be knowledgeable about security is increasingly evident. Whether they are IT security professionals or general office staff, having the appropriate security knowledge and skills to perform their jobs is a critical business driver. To plan and position your security training initiatives cost-effectively, RSA Learning Assessments are tools to measure your team’s

knowledge of RSA products and other security-related concepts. Based on the learning assessment results, we can work with you to identify a learning program that works for you and your team.

RSA Learning Assessments are useful for organizations who recognize a need for training but aren’t quite sure what training their team really needs. By leveraging RSA Learning Assessments, you can better understand the learning gaps and make an informed decision about the most effective individual and group training plans for your team. Online RSA Learning Assessments are available to you at no charge. An assessment can be completed within 15-20 minutes with

immediate results provided to the assessment taker. For a team assessment, management reports can be provided that evaluates individual and group results.

(6)

RSA Training Unit

Details:

– Each Training Unit has a value of $100 US

– Valid for customers and partners in all regions

– Can be used to register one or more individuals

– Can be redeemed for any RSA course and any delivery mode – Valid for one year (364 days)

from time of issuance. Any unused days are null and void after the expiration date – Payment can be made with:

purchase order, credit card, or company check

Registration and

Payment

Please complete your registration at

www.emc.com/rsa-training. Be sure you register with the e-mail address of the student attending class, as this is the only unique identifier we have for each student.

Complete details regarding payment by purchase order, credit card or check are provided on our web site.

RSA TRAINING UNITS

Training is an invaluable means of facilitating growth in your organization and increasing the skills and knowledge of your employees. With RSA Training Units (TUs) you can invest in RSA courses and use them whenever RSA training is necessary.

Training units are simply RSA Education Services currency. They are deposited into a company’s training account and are available for general consumption by your company’s employees. Valid for one year from date of purchase, pre-paid TUs provide maximum flexibility to ensure your team’s readiness.

With RSA TUs you can satisfy your training requirements as they evolve throughout the year. You reduce the paperwork and approvals associated with multiple enrollments by taking care of all your training needs with a single purchase.

RSA CERTIFIED SECURITY PROFESSIONAL

CERTIFICATION

By becoming an RSA Certified Security Professional, you possess the credentials that demonstrate your knowledge and skills necessary to function as a practical expert in the rapidly growing information security industry. Job-based certifications are available for administrators for the product areas designated below. Our relationship with Pearson VUE, which operates 5,000 testing centers in 165 countries, provides convenient access to certification exams and ensures impartial testing. The RSA Certified Administrator specialization is designed for

professionals who administer and maintain enterprise security systems that use RSA SecurID®_{, RSA Archer}®_{, or RSA}®_{Security Analytics.}

Certification

Recommended RSA Courses

RSA Archer Certified

Administrator

 RSA Archer Administration

 RSA Archer Advanced Administration RSA SecurID Certified

Administrator

 RSA Authentication Manager Administration  RSA Authentication Manager Installation and

Configuration RSA Security Analytics

(7)

SUMMARY OF OFFERINGS BY DELIVERY MODE

7 ILT VILT e-Learning Online ILT

Identity and Access Management

RSA Access Manager Administration, Installation and Configuration

_

_

_

RSA Identity Management and Governance Administration

_

_

_

RSA Business Role Manager

_

_

_

RSA Data Access Governance Basics

_

_

_

RSA Identity Management and Governance End-User Training

Service







RSA Authentication Manager Administration







RSA Authentication Manager Installation and Configuration

_

_

_

RSA SecurID Help Desk Basics

_

_

RSA Authentication Manager 6.1 to 8.x Data Migration

_

_

_

Migrating RSA Authentication Manager v6.1 to a v8.1 Hardware

Appliance







RSA Authentication Manager 7.1 to 8.x Data Migration

_

_

_

Migrating RSA Authentication Manager v7.1 to a v8.1 Hardware

Appliance







Governance, Risk and Compliance

Getting Started with Enterprise Risk Management



Getting Started with Policy and Compliance Management





RSA Archer Administration







RSA Archer Advanced Administration







RSA Archer Custom End-User Training Service







RSA Security Operations Management Solution Basics







Security Operations

RSA Data Loss Prevention Administration







RSA ECAT Analysis Fundamentals







RSA Security Analytics Administration



RSA Security Analytics for Analysts



RSA Security Analytics for Logs



(8)

SUMMARY OF OFFERINGS BY DELIVERY MODE

(CONTINUED)

ILT VILT e-Learning Online ILT

Anti Fraud

RSA Adaptive Authentication On Premise Administration



RSA Adaptive Authentication for eCommerce Back Office Tools





RSA Adaptive Authentication 12 Migration





RSA Web Threat Detection Essentials



Cyber Defense

RSA Intelligence-Driven Event Analysis



RSA Incident Handling and Response



RSA Threat Intelligence



RSA Malware Analysis



RSA SOC Simulation Challenge



RSA Cyber Defense Workshop





Security Concepts and Principles

RSA Security Awareness Program







RSA Certified Information Systems Security Professional (CISSP)

Boot Camp





(9)

9

RSA

®

_{Access Manager Administration,}

Installation and Configuration

Course Description

Overview

RSA Access Manager system architecture, server structure, integration of components into an enterprise infrastructure, user organization, and the importance of various configuration parameters are discussed. Hands-on labs allow the student to work step-by-step through the phases of an RSA Access Manager implementation.

Extensive hands-on labs and the use of a realistic case study reinforce the tasks involved in creating a complete Web access management solution.

Audience

System, security, or help desk personnel who need to install, deploy and/or maintain RSA Access Manager.

Duration

4 days

Prerequisite Knowledge/Skills

Familiarity with Web and directory server or database technologies; A functional knowledge of OS and networking fundamentals.

Course Objectives

Upon successful completion of this course, participants should be able to:

 Explain the basic architecture and integration of RSA Access Manager in an enterprise environment

 Describe the processes and methodology for performing a successful installation and implementation of the core servers, data adapter, Administrative Console and representative Agents

 Describe the management functions used for resource and end user administration  Using a case study, perform typical administration functions to populate and

configure users, administrators and groups in an RSA Access Manager database  Explain the configuration parameters that can be used to tailor the RSA Access

Manager components to accomplish specific tasks and functions

 Establish Entitlements and use RSA Access Manager Smart Rules™ to manage Web access and protect resources in a classroom Web environment

 Perform system troubleshooting and analysis through the use of audit logs and user reports

 Explore how runtime and administrative operations can be extended through the use of the API library

AT-A-GLANCE

This course offers theoretical and hands-on instruction in the

administrative functions, operations, and

installation and configuration tasks associated with the RSA Access Manager product.

REGISTER FOR CLASSES: For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730

COURSE PART NUMBERS: ED CLRAIN210 – Onsite Class ED ACCMGR TRAIN UNIT – Training Units

(10)

Course Outline

 RSA Access Manager Overview

▬ High level description of RSA Access Manager and its contribution to access management  RSA Access Manager Architecture

▬ Description and functions of the Primary Servers; Web and Application Server Agents ▬ Data Flow for the Runtime and Administrative

operations

▬ Description of how RSA Access Manager fits into a distributed security model

 Installation and Configuration

▬ Description of RSA Access Manager system requirements and pre-installation readiness tasks

▬ Installation procedure, options, and recommended practices

▬ Installation of Access Manager Servers, LDAP Data Adapter, Administrative Console, and Web and Application Server Agents

▬ Configuration of Web Server for Single Sign-On

 Managing Resources

▬ Discussion of how resources (Web sites, Applications, etc.) are protected using RSA Access Manager – focusing on selectivity and granularity in various situations

▬ Registration of Web Servers and definition of Applications

▬ Discussion of Virtual Web Server Hosts ▬ Configuration of Web Server for virtual hosts  Delegated Administration

▬ Discussion of the administrative structure that is possible in an RSA Access Manager

installation

▬ Use of Administrative Groups and ownership hierarchy of administrators, users, and objects ▬ Examination of Administrative Roles and

responsibilities  Managing the Organization

▬ Policy control for user authentication and passwords

▬ Methodology of structuring users, groups, user attributes, and properties

Creation of user properties and addition of users to groups

 Resource Protection and Authentication

▬ Discussion of Authentication Methods used to protect resources; Form-based vs.

challenge/response authentication; Chaining and combining forms

▬ Discussion of how resources are defined to allow granular protection

▬ Use of RSA Access Manager Entitlements and Smart Rules to selectively manage access to resources

▬ How to manage conflicts among Smart Rules and between Smart Rules and Entitlements ▬ Configuration of Access Manager for external

authentication and URL retention  Troubleshooting

▬ Examination of the log files and use of special configuration parameters to control log detail ▬ Configuration of servers for centralized

logging

▬ Configuration of Network Management ▬ Discussion of approaches to user and system

troubleshooting  Development Tools

▬ Discussion of the various Runtime,

Administrative, and Web Agent Extension API tools that are available

▬ Examination and implementation of JAVA coding examples

 Single Sign-On

▬ Discussion of the function and objectives of creating a single sign-on environment ▬ Explanation of the differences and challenges

of ‘Intra-’ vs. ‘Inter-’ site single sign-on ▬ Configuration of Access Manager for SSO and

ISSO

 Distributed Authorization

▬ Discussion of achieving redundant functionality and failover

▬ Explanation of the differences in Standard Mode vs. Distributed Mode failover ▬ Test of centralized logging

(11)

11

RSA

®

_{Identity Management and}

Governance Administration

Course Description

Replaces the Following Former Courses

Access Fulfillment Express, Access Request Manager, Business Role Manager and Access Certification Manager Foundations

Overview

This course provides an overview of the administrative responsibilities and configuration options associated with the RSA IMG platform. Students will gain a comprehensive understanding of the access review cycle, change request and provisioning capabilities of the platform. Students will enable the ACM, ARM, AFX and BRM modules. Hands-on labs are used to reinforce the tasks involved in configuring, maintaining, and utilizing the platform to perform user, account, and group structure reviews and other tasks in a simulated review cycle. Students will configure the components necessary to automate onboarding and new user registration processes and will create workflows, notifications, and change requests. Students will discuss password management functions and

provisioning, attribute management, collectors, roles, rules, reporting, and dashboards to provide an end-to-end structured experience for the students.

Audience

RSA IMG platform administrators, implementers and other technical users who need to configure, administer, or support the RSA IMG platform.

Duration

4 days

Prerequisite Knowledge/Skills

Familiarity with Active Directory, LDAP, and SQL querying.

Course Objectives

Upon successful completion of this course, participants should be able to:  Understand the components included in the RSA IMG platform  Understand platform configuration options

 Enable the ACM, ARM, AFX and BRM modules  Packaging and importing platform resource objects

 Perform administrative functions, including configuring identity, account, and

entitlement collectors, and unifying user data to gain full visibility into enterprise user access and entitlements

 Configure and process business role sets, rules, notifications and workflows  Configure, run, and perform user access certification reviews

 Configure and action change requests, user registrations, and password management options

 Deploy automated provisioning options for change requests and user registrations  Create and publish reports to dashboards and external sources

AT-A-GLANCE

The RSA Identity Management and Governance Administration course provides an overview of the administrative and configuration options associated with the RSA Identity Management and Governance (IMG) platform.

REGISTER FOR CLASSES:

For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED IMG ADM 210 – Onsite Class

ED IMG TRAIN UNIT – Training Units

(12)

Course Outline

 The RSA IMG Platform

▬ RSA IMG Platform Overview ▬ Collection Model

▬ Data Model

 RSA IMG Platform User Interface ▬ Interface overview

▬ Login Screen

▬ AveksaAdmin Account ▬ Header and Menu Bar ▬ Working with Tables ▬ Admin Menu

▬ Planning for Custom Attributes ▬ Collected VS. ACM Managed Attributes ▬ System Settings

▬ Admin Security Options ▬ Packaging and Importing  Users and Identities

▬ Users and Identities Overview ▬ Groups

▬ Business Units ▬ Resources

▬ Identity Data Collectors ▬ Unification Process ▬ Authentication Providers ▬ Planning for Collecting Identities  Accounts, Roles and Entitlements

▬ Account Attributes ▬ Account Data Collectors ▬ Orphaned Accounts ▬ Application Roles ▬ Entitlement Attributes ▬ Entitlement Data Collectors ▬ Business Descriptions

▬ Planning for Collecting Entitlements  Password Management

▬ Password Management features overview ▬ User Self-service password reset

▬ Password reset change requests ▬ Password synchronization ▬ RSA Kiosk password reset  Roles

▬ Roles Overview ▬ Role Set Creation ▬ Birthright provisioning

 Rules ▬ Rules Overview ▬ Rule Definitions ▬ Processing Rules  Reviews ▬ Reviews Overview ▬ Reviews in Context ▬ Review Definitions ▬ Administering Reviews ▬ Performing Reviews ▬ Refreshing Reviews ▬ Watch closures

▬ Completing a Review and Reporting Results  Workflows and Notifications

▬ Workflows Overview ▬ Workflows

▬ Configuring Workflows ▬ Notification options ▬ Notification templates  Dashboards and Reports

▬ Reports Overview ▬ Creating Reports

▬ Report Queries and Parameters ▬ Formatting and Distribution Settings ▬ Dashboard Components

 Requests to change access with ARM ▬ Access Requests Overview ▬ Attribute configuration ▬ Request Buttons ▬ Request Forms

▬ User and Entitlement Views

▬ Change Request processing and watch closures

 Provisioning with AFX

▬ Access Fulfillment Express Overview ▬ Deploying Access Fulfillment Express ▬ Configuring Connectors

▬ Configuring Endpoint capabilities  Capstone Structured Experience

▬ Complete end-to-end access review cycle ▬ Deploy change requests with automated

provisioning

▬ Publish final reports to simulation auditors and executives

(13)

EMC2_{, EMC, RSA, RSA Security, Archer, NetWitness and the RSA logo are registered trademarks of EMC Corporation in the United States and/or other countries.}

RSA

®

_{Business Role Management}

Course Description

Overview

The RSA IMG Business Role Manager module extends the capabilities of the IMG product to include the ability to group users and entitlements into roles. The RSA IMG BRM eLearning provides an overview of BRM components. Topics include terminology, configuration, and role mining options to tailor the module to a customer’s needs. Demonstrations illustrate the tasks involved in configuring, maintaining, and utilizing the Business Role Manager module.

The course is comprised of lecture content as well as recorded product demonstrations to illustrate the RSA IMG BRM product in action.

Audience

RSA Identity and Access Management/Identity Management and Governance administrators, implementers and other technical users who need to configure, administer, or support the RSA IMG Business Role Manager module.

Duration

4 hours

Prerequisite Knowledge/Skills

Completion of the RSA Identity Management and Governance (IMG) course (or former RSA ACM Foundations course).

Course Objectives

Upon successful completion of this course, participants should be able to:  Enable the Roles option and Business Role Manager module

 Understand the functionality and capabilities of the Roles and Business Role Manager modules

 Understand Business Role Manager terminology

 Understand the differences between business, technical, and global roles  Interpret role metrics are produced

 Create, configure and manage roles  Create and configure role options  Create and configure role sets  Discover roles and entitlements  Define role membership rules

 Manage organization roles for compliance to best practice principles  Allow others to manage roles

AT-A-GLANCE

The RSA IMG Business Role

Manager course provides

instruction on the administrative responsibilities and configuration options associated with the RSA IMG Business Role Manager module.

For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED IMG TRAIN UNIT – Training Units

(14)

Course Outline

 Business Role Manager Overview ▬ BRM Features

▬ Definition of a Role

▬ Benefits of using Roles in Access Governance ▬ Difference between Business Roles and

Technical Roles  Enable and Configure BRM

▬ How to enable BRM. ▬ Role configuration options ▬ Role management options  Create a Role

▬ Best practices for creating a role ▬ Definition of a birthright role ▬ How to create a role ▬ Definition of a role set ▬ How to create a role set ▬ How to add members to a role ▬ Role membership rules ▬ Role metrics

 Discover Roles

▬ Benefit of role discovery

▬ Definition of top-down role modeling ▬ Demonstration of top-down role modeling ▬ Definition of bottom up role modeling ▬ Demonstration of bottom-up role modeling

 Manage Roles

▬ Role management lifecycle

▬ Common indicators of role problems ▬ Using roles in entitlement reviews ▬ Interpreting role metrics

(15)

RSA

®

_{Data Access Governance Basics}

Course Description

Overview

This course discusses the use of the RSA IMG Data Access Governance module as a tool to collect and manage user access to data resources. Topics include collection

configuration, access reviews, user access requests, and data resource ownership. Recorded demonstrations reinforce the tasks involved in configuring, maintaining, and utilizing the Data Access Governance module.

Audience

RSA Identity and Access Management/Identity Management and Governance administrators, implementers and other technical users who need to configure, administer, or support the RSA IMG Business Role Manager module.

Duration

2 hours

Prerequisite Knowledge/Skills

Completion of the RSA Identity Management and Governance (IMG) Administration course (or former RSA ACM Foundations course).

Course Objectives

Upon successful completion of this course, participants should be able to:  Enable the Data Access Governance (DAG) module

 Understand how RSA DAG and StealthBits®_StealthAUDIT®_{work together to collect} data resource information

 Manage reviews of resource owners and user access

 Configure rules to support an organization’s user access policies  Configure and manage end user data access requests

Course Outline

 Purpose and function of RSA Data Access Governance ▬ Use and benefits of RSA DAG

▬ Permission types ▬ DAG operations  RSA DAG Architecture

▬ Components and functions ▬ Data flows

 Process and Workflows ▬ Data acquisition ▬ Review workflow

▬ Rules and rule processing ▬ End user data access requests

AT-A-GLANCE

The RSA IMG Data Access

Governance Basics course

provides instruction on the administrative

responsibilities and configuration options associated with the RSA IMG Data Access Governance module.

For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED IMG TRAIN UNIT – Training Units

(16)

RSA

®

Identity Management and Governance

Custom End-User Training Service

Solution Description

Executive Overview

The RSA Identity Management and Governance (IMG) platform helps organizations efficiently meet their security, regulatory and business access needs through a collaborative set of business processes. By automating manual tasks, providing evidence of compliance, reducing access-related business risk, and efficiently delivering business access, enterprises can confidently manage, control and enforce access to applications and data across the enterprise and the cloud.

But no matter how good a solution is, your organization will never be able to optimize ROI without your end users understanding your organization’s best practices and procedures and how to use the IMG solution in your environment.

RSA Education Services offers the RSA Identify Management and Governance Custom

End-User Training Service to help ensure your organization’s success:

 Compliance – Through training, your End Users learn how to make access decisions while ensuring compliance with controls defined by your organization.  Access Governance – Trained End Users are able to enforce control over use

access and therefore minimize risk to business operations.

 Rapid-time-to-Value – Trained End Users are better equipped to meet your enterprise’s specific IMG requirements.

An RSA Education Services Consultant will work with you and/or Professional Services when configuration of your RSA IMG system is complete. A needs analysis will be performed to define the training’s scope and deliverables to meet your requirements and a project plan and timetable will be designed in collaboration with you.

Concepts and Principles

Tailored to your RSA IMG use case and unique requirements, the audience for this offering are your business end users whose training needs may include but are not limited to the following:

 Logging in and navigating the system  Performing a Job Change Request  Entering a New Hire Access Request  Terminating an Access Request

 Complete other processes as defined per project

Note: This offering is not intended to address the complex tasks associated with implementing, configuring and administering IMG. The RSA IMG Administration course is appropriate for those individuals.

AT-A-GLANCE

This offering provides training to your end users and is customized to your organization’s specific RSA Identity Management and Governance application.

REGISTER FOR CLASSES: For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED IMG EUTTT 210 – Train-the-trainer option

ED IMG EUELN 210 – E-Learning option

ED IMG EUILT 210 – Instructor Led Delivery by RSA

(17)

 EMC2_{, EMC, RSA, RSA Security, Archer, NetWitness and the RSA logo are registered trademarks of EMC Corporation in the United States and/or other countries.}

Deliverables

Based on a single use case, this education service provides:

 A scripted PowerPoint slide deck that includes content customized to your environment:

o Content branded with the organization’s logo and standard .PPT template

o Unlimited use by the organization for its end users o Access to an editable version of the content  One of three delivery options:

o Live, Virtual TTT -10 days of custom development, followed by one half-day of instructor-led “Train-the-Trainer” delivered virtually to your training team. Participants can interact via a web session with

instructors.

Part Number: ED IMG EUTTT 210

o E-Learning – 15 days of custom development that includes a self-paced, SCORM-compliant e-learning module (with audio) with

unlimited distribution via your own training site and the convenience of learning at your own pace.

Part Number: ED IMG EUELN 210

o Instructor-Led – 10 days of custom development followed by 3 consecutive days of instructor-led training delivered onsite at your location.

Part Number: ED IMG EUILT 210

ABOUT RSA

RSA is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.

Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated.

(18)

RSA

®

_{Authentication Manager}

Administration

Course Description

Overview

The working principles behind RSA Authentication Manager and RSA SecurID authenticators are discussed, including product architecture, time synchronization, managing external Identity Sources and exploring all aspects of an administrative structure. Extensive hands-on labs reinforce the administrative tasks involved in managing a user population and token assignment.

The subject matter in this course prepares students with the classroom component recommended for the RSA Authentication Manager Certified Administrator

certification.

Audience

System, security, or help desk administrators who need to administer and support RSA SecurID products.

Duration

2 days

Prerequisite Knowledge/Skills

Familiarity with Microsoft® Windows® or UNIX/Linux system administration.

Course Objectives

 Understand the basic architecture and theory of operation of the RSA SecurID product suite

 Perform configurations required for RSA Authentication Manager system operations

 Perform user administration functions to populate and manage users  Perform reporting and user troubleshooting

 Understand ongoing maintenance requirements

 Understand the setup and use of software authenticators  Understand the configuration and use of self-service functionality

AT-A-GLANCE

This course provides an overview of the

administrative

responsibilities associated with an RSA SecurID® system.

COURSE PART NUMBERS:

ED AMADM210 – Onsite Class ED AM TRAIN UNIT – Training Units

(19)

 EMC2_{, EMC, RSA, RSA Security, Archer, NetWitness and the RSA logo are registered trademarks of EMC Corporation in the United States and/or other countries.}

Course Outline

 Product and Technology Overview

▬ High level description of RSA Authentication Manager and its contribution to user authentication

▬ Authentication as a foundation of security, trust and confidence in digital identities ▬ RSA Authentication Manager system

components and communication  RSA SecurID Authentication

▬ RSA SecurID authentication options ▬ Concepts of strong user authentication ▬ Token technology – time synchronization,

authenticator types  Risk-Based Authentication

▬ Configuration and management of Risk-based authentication

▬ Device fingerprinting and behavior data collection and analysis

▬ Selecting assurance levels

 Deployment and Administrative Structure ▬ Deployment planning and establishing an

administrative structure  Policy Management

▬ Defining and applying policies to the system and Security Domains

- Password and Token policies - Lockout and self-service policies - Risk-based and Offline authentication

policies

 System Administration

▬ Establishing and maintaining organizational and administrative structures:

- LDAP Identity Sources - Security Domains

- User and User Group structures - Administrative roles and delegation - Authentication Agents

 Authenticator Management

▬ Managing RSA SecurID hardware tokens ▬ Software token deployment and installation ▬ Managing Risk-Based Authentication ▬ Managing On-Demand Authentication  Auditing, Reports and Troubleshooting

▬ RSA Authentication Manager report functions ▬ Report customization

▬ Troubleshooting procedures  Self-Service Management and Support

▬ Configurations for user self-service functions ▬ User account and authenticator management

(20)

RSA

®

_{Authentication Manager}

Installation and Configuration

Course Description

Overview

This course assumes that the student has attended the RSA Authentication Manager Administration course or has equivalent operation and administrative experience with RSA Authentication Manager – administrative tasks are not covered as part of this course.

Audience

Technical personnel who install, service and support RSA Authentication Manager and RSA SecurID deployments.

Duration

2 days

Prerequisite Knowledge/Skills

Microsoft® Windows® or UNIX/Linux system administration; attendance in RSA Authentication Manager Administration course, or equivalent v7.1 or v8

administration experience; Familiarity with virtual machine deployment on VMware.

Course Objectives

Upon successful completion of this course, participants should be able to:  Plan and perform the pre-installation, installation, and configuration tasks to

accomplish an RSA Authentication Manager virtual appliance installation in a VMware environment

 Configure RSA Authentication Manager system parameters  Configure and connect to external LDAP Identity Sources

 Create redundant/failover RSA Authentication Manager replica servers and understand the role and management of replica server instances

 Install and configure RSA Authentication Agents for local workstation and web access protection

 Perform an RSA Authentication Manager Web Tier installation to support user self-service and risk-based authentication

AT-A-GLANCE

This course offers hands-on training on the installation and configuration of RSA Authentication Manager, Authentication Agents, Web Tier, and other RSA

SecurID® system components..

COURSE PART NUMBERS:

ED AMINS210 – Onsite Class ED AM TRAIN UNIT – Training Units

(21)

Course Outline

 RSA Authentication Manager System Architecture

▬ Primary and Replica instances

▬ Authentication Agents and communication paths

▬ Identity Sources ▬ Firewall configurations ▬ Web Tier component ▬ RADIUS communication  Deployment Scenarios and Planning

▬ Deployment and Installation planning ▬ Using the right Authentication Agent ▬ Planning administrative support

▬ Using CT-KIP for software token deployment  RSA Authentication Manager Deployment

▬ Pre-Installation requirements and considerations

▬ Supported VMware environments and features

▬ V8.1 Hardware Appliance deployment ▬ Deployment process and steps ▬ Post-deployment tasks  System Configurations

▬ Settings and configurations - System-wide configurations - Instance settings

- Console and dashboard personalization  Authentication Agent Configurations

▬ Functions and features of representative Authentication Agent installations for Microsoft Windows and Linux operating systems

▬ Configuring Agent software for local, network and web access protection ▬ Handling node secret and sdconf.rec files

 Replica Instances

▬ Strategies for dealing with primary instance failures and replica promotion

▬ Creating replica packages

▬ Establishing preferred and failover servers in Agent hosts

 Web Tier Installation

▬ Requirements and installation process for the Web Tier component

▬ Customizing the end user interface  System Utilities

▬ Using the Command-line Utility package ▬ Installing and configuring the Windows MMC

snap-in

▬ Managing Realm trusts  Credential Manager Configuration

▬ Setting up the Credential Manager for provisioning

 RADIUS Server Configuration

▬ RADIUS functions and capabilities ▬ Primary and Replica RADIUS servers ▬ Managing RADIUS users

 RSA Authentication Manager Migration Overview ▬ Optional overview of the migration process from version 6.1 to version 8 and/or version 7.1 to version 8

▬ This module is delivered if students are planning to perform a migration in their production system and are interested in the general planning and steps involved in a migration

(22)

RSA SecurID

®

_{Help Desk Basics}

Course Description

Overview

An overview of RSA Authentication Manager and RSA SecurID authenticators and authentication methods are presented, as well as how functions and controls are accessed in the administrative interface. Instructor demonstrations of important operations relating to typical end user cases reinforce the steps that Help Desk representatives can take for troubleshooting and assisting their user population. This course is useful for new representatives supporting RSA SecurID users as well as a refresher course for representatives who infrequently work with RSA SecurID support issues.

Audience

Help Desk representatives who need to assist and support RSA SecurID users

Duration

1 day

Prerequisite Knowledge/Skills

General familiarity with system administration functions

Course Objectives

Upon successful completion of this course, participants should be able to:  Understand the high-level architecture and theory of operation of the RSA

SecurID product suite

 Identify common authentication problem areas  Perform common user assistance tasks

 Understand the use of the user Self-service capabilities

AT-A-GLANCE

This course provides the fundamental information about an RSA SecurID® system deployment to assist Help Desk representatives respond to end users.

REGISTER FOR CLASSES: For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED AM TRAIN UNIT – Training Units

(23)

Course Outline

The following modules are designed to support the course objectives:

 RSA SecurID System Overview

▬ High level description of RSA SecurID and RSA Authentication Manager system components

▬ RSA authentication methods:

o Hardware and Software authenticators o On-Demand Authentication

o Risk-Based Authentication ▬ Authentication process and data flow  Authentication Problem Areas

▬ Identifying and isolating user problems ▬ Common user errors

▬ Differentiating User vs Agent vs Server problems

 System Configurations

▬ Organizational structures – users, groups, Security Domains and Identity Sources ▬ Authentication options and policies  Authenticator Operations

▬ Hardware tokens ▬ Software tokens ▬ On-demand codes

▬ Emergency and temporary codes

 Monitors and Reports

▬ Using the Authentication Monitor

▬ Generating reports to track and user activity  User Troubleshooting

▬ Troubleshooting procedures ▬ Security considerations  Self-service Console

▬ User self-service functions ▬ Self-Service provisioning flow

(24)

RSA

®

_{Authentication Manager 6.1 to}

8.x Migration

Course Descriptions

Overview

Product functionality that is pertinent to the migration of v6.1 is discussed as well as the process and considerations for migrating to a v8.x environment.

Note that this course discusses migration of “out-of-box” deployments and does not address migration of customized APIs running under v6.1.

Audience

Technologists who are responsible for an RSA SecurID system and intend on migrating from RSA Authentication Manager v6.1 to v8.

Prerequisite Knowledge/Skills

Familiarity with RSA SecurID technology and RSA Authentication Manager v6.1.

RSA Authentication Manager 6.1 to 8.0 Data Migration

This course describes the features and functions that are new to RSA

Authentication Manager v8.x as well as how database objects and structures map from v6.1 to v8.x. It details several deployment and migration scenarios and the steps required to migrate v6.1 data to a v8.x installation.

Duration

Approximately 1 hour

Migrating RSA Authentication Manager v6.1 to a v8.1

Hardware Appliance

This course augments the data migration course (described above) and focuses on the process and considerations for migrating to a version 8.1 hardware appliance from v6.1.

Duration

Approximately 15 minutes

This elearning course is available to customers at no charge.

If you are accessing RSA eLearning for the first time, please visit

http://powerlink.emc.com to establish an account.

If you already have an account through EMC Powerlink, go directly to

www.emc.com/rsa-training to access this course.

AT-A-GLANCE

This eLearning course guides the participant through the steps to accomplish a standard migration from RSA Authentication Manager version 6.1 to version 8.x.

(25)

RSA Authentication Manager 6.1 to 8.0

Data Migration

Course Objectives

 Provide an overview of the fundamental

differences between RSA Authentication Manager v6.1 and v8.x – features and functions

 Describe the specific database objects that are migrated between product versions and how they are handled by the migration

 Describe the pre-migration steps to prepare a v6.1 database for migration

 Describe the post-migration structures that can be created in v8.x to contain and manage migrated objects

Course Outline

 Comparison of v6.1/v8.x Architecture and Administrative Structures

▬ Describes the general architecture and compares differences/parallels between product versions

▬ Describes the major areas of importance in the v8.x data structures and how they map to a v6.1 environment

▬ Describes terminology used in v8.x  Overview of the Migration Process

▬ High-level description of the methodology for approaching a migration

▬ Describes in detail how database objects are mapped from version to version

 Pre-Migration Preparation

▬ Describes the considerations and best practices involved in preparing a v6.1 environment for migration — database cleaning, creating/dismantling structures, etc. and preparing a v8.x environment to receive migrated information — what decisions and elements should be made before migration

 Post-Migration Considerations

▬ Description of tasks that can be performed after the completion of the migration process

 Migration of an RSA SecurID Appliance

▬ Describes the general process for migrating data from a v6.1 RSA SecurID Appliance to a v8 environment

Migrating RSA Authentication Manager

v6.1 to a v8.1 Hardware Appliance

Course Objectives

 Understand a deployment architecture that includes one or more v8.1 hardware appliances as primary and/or Replica instances

 Describe the migration process of migrating from a v6.1 software or hardware appliance platform to a v8.1 hardware appliance

Course Outline

 Overview of v8.1 Architecture

▬ Describes the architecture and deployments options that include a v8.1 hardware appliance

 Overview of the Migration Process

▬ Describes migration tasks involved with migrating to a hardware appliance that are over and above the tasks involved with data migration alone

▬ Using the v6.1 Migration Assessment Tool  Migration Steps

▬ Describes the initial connections and setup of a v8.1 hardware appliance

▬ Describes the steps involved with migration from exporting v6.1 data to importing it into a v8.1 hardware appliance.

(26)

RSA

®

_{Authentication Manager 7.1 to}

8.x Migration

Course Descriptions

Overview

Product functionality that is pertinent to the migration is discussed as well as virtual and hardware appliance deployment, Web Tier, and Risk-Based Authentication options that are new in v8.x.

Note that these courses discuss migration of “out-of-box” deployments and do not address migration of customized environments or APIs running under v7.1.

Audience

Technologists who are responsible for an RSA SecurID system and intend on migrating from RSA Authentication Manager v7.1 to v8.

Prerequisite Knowledge/Skills

Familiarity with RSA SecurID technology and RSA Authentication Manager v7.1.

RSA Authentication Manager 7.1 to 8.0 Data Migration

This course describes the features and functions that are new to RSA Authentication Manager v8.x. It details several deployment and migration scenarios and the steps required to migrate v7.1 data to a v8.x installation.

Duration

Approximately 1 hour

Migrating RSA Authentication Manager v7.1 to a v8.1

Hardware Appliance

This course augments the data migration course (described above) and focuses on the process and considerations for migrating to a version 8.1 hardware appliance from v7.1. The information in this course is appropriate for v7.1 deployments that currently use hardware appliances as well as for migrations to v8.1 that will begin using a hardware appliance for the first time.

Duration

 Approximately 15 minutes

AT-A-GLANCE

This eLearning course guides the participant through the steps to accomplish a standard migration from RSA Authentication Manager version 7.1 to version 8.x.

This elearning course is available to customers at no charge.

If you are accessing RSA eLearning for the first time, please visit

http://powerlink.emc.com to establish an account.

(27)

RSA Authentication Manager 7.1 to 8.0

Data Migration

Course Objectives

 Provide an overview of the fundamental

differences between RSA Authentication Manager v7.1 and v8 – features and functions

 Describe the migration process

 Describe the pre-migration steps to prepare for v7.1 data export

 Describe the post-migration tasks in a v8 environment

Course Outline

 Comparison of v7.1/v8 Architecture

▬ Describes the general architecture and system components that are similar to v7.1 and those that are new to v8

▬ High-level description of the options and methodology involved with migration ▬ Discusses approaches to minimize downtime

during migration  Migration Steps

▬ Discusses pre-migration preparations ▬ Describes the v8 deployment ▬ Describes installation of the RSA

Authentication Manager Migration Export Utility

▬ Describes Basic and Advanced migration options

▬ Considerations for RADIUS migration  Post-Migration Tasks

▬ Describes tasks to be performed after the completion of the migration process ▬ Discusses rolling back a migration  Migration Assistance

▬ Describes troubleshooting information and how to obtain further assistance from RSA resources

Migrating RSA Authentication Manager

v7.1 to a v8.1 Hardware Appliance

Course Objectives

 Understand a deployment architecture that includes one or more hardware appliances as primary and/or Replica instances

 Describe the migration process of migrating from a software or hardware appliance platform to a v8.1 hardware appliance

 Understand how to upgrade an existing supported hardware appliance to be v8.x-capable

Course Outline

 Overview of v8.1 Architecture

▬ Describes the architecture and deployments options that include a v8.1 hardware appliance

▬ Describes migration tasks involved with migrating to a hardware appliance that are over and above the tasks involved with data migration alone

 Upgrading and Re-imaging an RSA SecurID Appliance

▬ Describes the process to upgrade supported RSA SecurID Appliance 3.0 equipment to enable it to host a v8.x instance

 Migration Steps

▬ Describes the steps involved with migration from exporting v7.1 data to importing it into a v8.1 hardware appliance.

(28)

Getting Started with Enterprise Risk

Management

Course Description

Overview

Students will gain knowledge of the key RSA Archer ERM components through presentations and hands-on exercises.

Audience

Risk management team members who will be using the RSA Archer Risk Management solution to define, support, and maintain a risk management

initiative. This may include managers, team leads, and anyone involved in scoping a risk project.

Duration

2 days

Prerequisite Knowledge/Skills

Familiarity with RSA Archer eGRC framework and a general familiarity with organizational Risk concepts.

Course Objectives

Upon successful completion of this course, participants should be able to:  Explain basic Risk Management terminology and methodologies  Illustrate the structure of the RSA Archer Risk Management Solution  Define business requirements related to Risk Management

 Begin the implementation process of an Enterprise Risk Management program

AT-A-GLANCE

This course provides an overview of the concepts, processes, and procedures necessary to successfully begin implementation of an Enterprise Risk Management (ERM) system.

REGISTER FOR CLASSES: For an up-to-date schedule of Instructor-led classes and other training options, visit the RSA Training and Certification web site: www.emc.com/rsa-training CONTACT US: Email: [email protected] Phone: 800-995-5095 Int’l: 781-515-7700 Fax: 781- 515-6630 174 Middlesex Turnpike Bedford, Massachusetts 01730 COURSE PART NUMBERS: ED ARCERM210 – Onsite Class ED ARC TRAIN UNIT – Training Units

(29)

Course Outline

 Introduction to Risk Management ▬ What is Risk?

▬ General Enterprise Risk Management Approach Overview

▬ Types of Risk  Digging Deeper

▬ Common Frameworks Overview ▬ Developing a Common Risk Taxonomy ▬ Elements of Risk Management ▬ Phases of Growth: ▬ Risk Identification ▬ Assessment ▬ Decision ▬ Treatment ▬ Monitoring

 RSA Archer Risk Management Solution ▬ RSA Archer ERM Structure Components ▬ ERM Processes and Key Integrations with