FedVTE Course Library

                                                                                                                                                                                                                                                                 

FedVTE Course Library

AdvancedPCAPAnalysisandSignatureDev 1Hour...3

ArtifactAnalysis 1Hour...3

BasicNetworkTrafficAnalysis 5Hours...3

CCNASecurity 34Hours...4

CentaurSiLKTrafficAnalysis 7Hours...4

CertifiedEthicalHacker(CEHv6) 45Hours...4

CertifiedEthicalHacker(CEHv7) 21Hours...4

CiscoNetworkSecurity1 9Hours ...5

CiscoNetworkSecurity2 9Hours ...5

CompTIAA+Prep 20Hours...5

*CompTIAA+220‐801CertificationPrep 12Hours...5

CompTIANetwork+CertificationPrep 17Hours...5

CompTIASecurity+(SY0‐301)Prep 32Hours...5

CyberRiskManagementforManagers 11Hours ...6

CyberRiskManagementforTechnicians 11Hours...6

CyberSecurityComplianceValidation(CCV) 8Hours...6

CyberSecurityOverviewforManagers 6Hours...6

*DemilitarizedZone(DMZ)withIDS/IPS 9Hours...6

DISAACASVersion4.6 32Hours...7

DISAACASVersion4.0 32Hours...7

DISAHBSSAdminMR4(2012Version) 32Hours...7

DISAHBSSAdminMR5(2013Version) 32Hours...7

DISAHBSSAdvancedMR4(2012Version) 32Hours...7

DISAHBSSAdvancedMR5(2013Version) 32Hours...7

DISAHBSSCompliancewithCNDDirectives 1Hour...8

DISAHBSSManagementRoles 1Hour...8

DISAHBSSSupplementalContent 1Hour...8

DISASymantecEndpointProtection12.1 32Hours...8

DISAVulnerabilityManagementSystem(VMS) 16Hours...8

DNSSECTrainingWorkshop 2Hours...8

                                                                                                                                                                                                                                                                

EinsteinSiLKTrafficAnalysis 7Hours...9

EmailAuthenticationWorkshop 4Hours...9

EmergingCyberSecurityThreats(2010) 13Hours ...9

InsideBotnets 3Hours...9

InternetSecurityFundamentals 3Hours ...10

IntroductiontoHTTP/HTTPSAnalysis 2Hours...10

IntroductiontoInsiderThreat 5Hours ...10

IntroductiontoInvestigationsofDigitalAssets 4Hours...10

IntroductiontoIPv6 5Hours...10

IntroductoryControlSystemsSecurity(ICSST) 6Hours...10

IPv6Security 1Hour...11

ISACACertifiedInformationSecurityAuditor 21Hours...11

ISACACertifiedInformationSecurityManager 18Hours...11

ISACACertifiedInformationSecurityManager2013 11Hours...11

(ISC)2™CAP(R)Prep 10Hours...11

(ISC)2™CISSPCertificationPrep 20Hours...12

(ISC)2™CISSP(R)CertificationPrepVersion2 27Hours...12

(ISC)2™CISSPConcentration:ISSAP 15Hours ...12

(ISC)2™CISSPConcentration:ISSEP 12Hours...12

(ISC)2™CISSPConcentration:ISSMP 13Hours...12

*(ISC)2CISSPConcentration:ISSMP 2013 15Hours...12

(ISC)2™SystemsSecurityCertifiedPractitioner 16Hours...13

LinuxOperatingSystemSecurity 9Hours...13

MalwareAnalysis 12Hours...13

MobileSecurity 19Hours...13

MonitoringforInsiderThreat 6Hours...13

NCSDTDPInformationSecurityFundamentals 13Hours...14

NCSDTDPIntrotoDigitalInvestigations 1Hours ...14

NetworkMonitoringwithOpenSourceTools 5Hours...14

NetworkingFundamentals 3Hours...14

                                                                                                                                                                                                                           

RaD‐X101forCNDAnalyst 6Hours...15

ReverseEngineering101 8Hours...15

SoftwareAssuranceforExecutives 10Hours...15

SupplyChainAwareness 1Hour...15

SupplyChainRiskManagementAwareness .5Hour...16

TechnicalMentoring–TechnicalWriting 3Hours...16

US‐CERTTMIncidentHandler 40Hours...16

US‐CERTTMMalwareAnalysis 7Hours...16

US‐CERTTMMalwareAnalyst 8Hours ...16

US‐CERTTMNetworkAnalyst 30Hours...17

UsingLinuxforAnalysis(ULA) 4Hours...17

Wi‐FiCommunicationsandSecurity 9Hours...17

WindowsOperatingSystemSecurity 16Hours...17

Advanced

PCAP

Analysis

and

Signature

Dev

1

Hour

TheAdvancedPCAPAnalysisandSignatureDevelopment(APA)coursetakesusersthroughan introductiontorules,goesoverexamplesyntax,protocolsandexpressions. Thiscourse containsseveralsupportingvideodemonstrationsaswellaslabexerciseswritingandtesting basicrules.

Artifact

Analysis

1

Hour

Thismoduleisdesignedfortechnicalstaffwhoareinterestedinunderstandingmoreaboutthe processandtechniquesformalwareanalysis(alsocalledartifactanalysis). Itprovidesan overviewofthedifferenttypesofmalwareanalysisactivities.

Basic

Network

Traffic

Analysis

5

Hours

Thiscourseaddressesnetworksecurityfromthetrafficanalysisperspective. Topicsinclude WhatisNetworkSecurity,WhyShouldYouCareAboutNetworkSecurity,Implementing NetworkSecurity,andseveraltopicsonprotocolsandDNS. Thiscourseincludesseveral supportingvideodemonstrations,labexercises,andafinalquiz.

                                                                                                                                                                                                                                                                                    

CCNA

Security

34

Hours

TheCCNASecuritycourseisaimedatthosewhoalreadyhaveexperiencewithroutersandbasic levelnetworkingskills,andthosewhomaybeinterestedintakingtheCCNASecurityexam. ContentcoveredintheCCNASecuritycourseincludeprotocolsniffers,analyzers,TCP/IP, desktoputilities,CiscoIOS,theCiscoVPN,aCiscosimulationprogramcalledPacketTracer,and someweb‐basedresources. Studentswillgetanin‐depththeoreticalunderstandingofnetwork security,knowledgeandskillsdesignedtoimplementit.

Centaur

SiLK

Traffic

Analysis

7

Hours

Thiscourseisdesignedforanalystsinvolvedindailyresponsetopotentialcybersecurity incidents,andwhohaveaccesstotheCDCenvironment. Thecoursebeginswithanoverview ofnetworkflowandhowtheSiLKtoolscollectandstoredata.Then,thereisasectionspecific totheCentaurenvironment.ThebasicSiLKtoolsarecoverednext,givingtheanalysttheability tocreatesimpleanalysesofnetworkflow.AdvancedSiLKtoolsfollow,andcoverhowtocreate efficientandcomplexqueries.Thecourseculminateswithalabwherestudentsusetheirnew skillstoprofileanetwork.

Certified

Ethical

Hacker

(CEHv6)

45

Hours

TheCEHv6certificationprepcoursepreparesstudentstositfortheEC‐CouncilCertifiedEthical Hackercertificationexam. Thiscoursecontainsnotonlythelecturematerialtohelpthe studentbroadentheirknowledgeoftechniquessuchasenumeration,scanningand

reconnaissance,butcontainsseveraldemosandlabstoimproveskillsandexperience. Topics includeactiveandpassivereconnaissance,hackinglaws,Googlehacking,socialengineering, packetcaptureandscanning.Thecoursethenmovesontoexploitationofseveraltypesand threatsandhowtocoveryourtracks. Thecourseconcludeswitha100‐questionpracticeexam.

Certified

Ethical

Hacker

(CEHv7)

21

Hours

TheCEHv7certificationprepcoursepreparesstudentstositfortheEC‐CouncilCertifiedEthical Hackercertificationexam. Thiscoursecontainsnotonlythelecturematerialtohelpthe studentbroadentheirknowledgeoftechniquessuchasenumeration,scanningand

reconnaissance,butcontainsseveraldemosandlabstoimproveskillsandexperience. Updates tov7fromv6includeseveralnewtoolsandhowtousethemtoperformvarioustechniques. Topicsincludeactiveandpassivereconnaissance,hackinglaws,Googlehacking,social

engineering,packetcaptureandscanning.Thecoursethenmovesontoexploitationofseveral typesandthreatsandhowtocoveryourtracks. Thecourseconcludeswitha100‐question practiceexam.

                                       

                                                                                                                                                                                                                                                 

Cisco

Network

Security

1

9

Hours

ThisisthefirstoftwocoursesfocusingonnetworksecurityinCiscoproductssuchasrouters, switches,andfirewalls. Thecourseintroducesnetworksecurity,vulnerabilities,threats, attacks,attackexamplesandvulnerabilityanalysis. Thecourseincludesseveralreinforcing videodemonstrations.

Cisco

Network

Security

2

9

Hours

ThisisthesecondoftwocoursesfocusingonnetworksecurityinCiscoproductssuchas routers,switches,andfirewalls. Topicsinthiscourseincludeintrusiondetectionand prevention,encryptionandVPNtechnology,configuringVPNs,securenetworkarchitecture, andPIXcontexts,failoverandmanagement. Severalreinforcingvideodemonstrationsare includedwiththiscourse.

CompTIA

A+

Prep

20

Hours

ThiscertificationprepcoursepreparesstudentstositfortheCompTIAA+certificationexamas wellteachesvaluablelessonstothestudentthatcanbeusedintheworkplace. TheA+

certificationisdescribedasbeingthestartingpointforacareerinIT. Theexamcovers

maintenanceofPCs,mobiledevices,laptops,operatingsystemsandprinters. Thiscertification prepcourseincludesseveralreinforcingvideodemonstrationsandhands‐onlabs.

*CompTIA

A+

220

‐

801

Certification

Prep

12

Hours

TheA+220‐801CertificationPrepSelf‐Studyisanintroductorycoursepresentingdomain knowledgeandobjectivesforthefivedomainsfeaturedintheA+220‐801portionoftheA+ certificationexam.

CompTIA

Network+

Certification

Prep

17

Hours

CompTIA’sNetwork+certificationprepcoursewasdevelopedforthecurrentNetwork+exam codeN10‐005. TopicscoveredontheNetwork+N10‐005examaswellasinthisFedVTEprep courseincludenetworktechnologies,installationandconfiguration,mediaandtopologies, managementandsecurity. Thiscertificationprepcourseincludesvideodemonstrations, practiceexam,andhands‐onlabs.

CompTIA

Security+

(SY0

‐

301)

Prep

32

Hours

ThiscertificationprepcoursepreparesstudentstositfortheCompTIASecurity+(SY0‐301) certificationexamaswellasteachesconceptsandtechniquesthatarevaluabletothe workplace. Topicscoveredinthecourse,andcompetenciestestedontheexaminclude networksecurity,complianceandoperationalsecurity,threatsandvulnerabilities,application, dataandhostsecurity,accesscontrolandidentitymanagement,andcryptography. This certificationprepcourseincludesseveralreinforcingvideodemonstrationsandhands‐onlabs aswellasapracticequiz.

                                                                                                                                                                                                                                               

Cyber

Risk

Management

for

Managers

11

Hours

CyberRiskManagementforManagerscoverskeyconcepts,issues,andconsiderationsfor managingriskfromamanager’sperspective. Discussionsincludeidentifyingcriticalassetsand operations,aprimeroncyberthreatsandhowtodeterminethreatstoyourbusinessfunction, mitigationstrategies,andconcludingwithresponseandrecovery.

Cyber

Risk

Management

for

Technicians

11

Hours

Thiscoursepresentstheconceptofmanagingcyberriskfromatechnicalperspective. An overviewofcyberriskmanagementopenstheclass,followedbyfoundationalmaterialon conductingariskassessmentsuchasthreats,vulnerabilities,impacts,andlikelihood. Various technicalmethodsforconductingariskassessmentarepresented,toincludevulnerability assessmentsandpenetrationtests,withafocusoncontinuousmonitoringofsecuritycontrols andhowtoassessthosesecuritycontrolsusingtheNationalInstituteofStandardsSpecial Publication800‐53and800‐53aasaguide.

Cyber

Security

Compliance

Validation

(CCV)

8

Hours

ThiscourseintroducestheCybersecurityComplianceValidation(CCV)assessmentprocesses, teamrolesandresponsibilities,andthetechnicalcriteriathatisusedasthebasisforassessing USFederalDepartments/Agencies. Thecoursecontainssupplementaldemonstrationsanda seniormanagementbriefing.

Cyber

Security

Overview

for

Managers

6

Hours

CyberSecurityOverviewforManagersisdesignedformanagersandotherstakeholderswho maybeinvolvedindecisionmakingregardingtheircyberenvironmentbutdonothaveastrong technicalbackground. Discussionswillnotfocusonspecifictechnologiesorimplementation techniques,butrathercybersecuritymethodologiesandtheframeworkforprovidinga

resilientcyberpresence. Thecourseaimstohelpmanagersbetterunderstandhowpeopleand devicesworktogethertoprotectmissioncriticalassetsandmoreeffectivelyevaluatetheir cyberposture.

*Demilitarized

Zone

(DMZ)

with

IDS/IPS

9

Hours

ThiscourseintroducestheconceptofanetworkDemilitarizedZone(DMZ)andthesecurity benefitsitcanprovide. BestpracticesfordesigningandimplementingaDMZisfollowedwitha sectiononIDSandIPSsystemsthatincludesanin‐depthlookatSNORTfornetworkmonitoring. Thecourseconcludeswithloganalysisandmanagementbestpractices.

                                                                                                                                                                                                                                     

DISA

ACAS

Version

4.632

Hours

ThiscourseisintendedforOperatorsandSupervisorsofACASwithintheDOD. Ithasbeen updatedfromthepreviousversiontoincludetrainingspecifictothelatestDISAbaseline,4.6. TheACAScoursecontains40demonstrations,10hands‐onlabs,57lectures,andaquizthat usersmustpasstoreceivetheircertificateofcompletion.

DISA

ACAS

Version

4.0

32

Hours

ThiscourseisintendedforOperatorsandSupervisorsofACASwithintheDOD.TheACAScourse contains31demonstrations,10hands‐onlabs,74lectures,andaquizthatusersmustpassto receivetheircertificateofcompletion.

DISA

HBSS

Admin

MR4

(2012

Version)

32

Hours

This32hourDISAHostBasedSecuritySystemCourseismandatoryforalladministratorsofthe HBSSMR4baselinewithintheDOD.TheHBSScoursecontains29demonstrations,18hands‐on labs,63lectures,andaquizthatusersmustpasstoreceivetheircertificateofcompletion.

DISA

HBSS

Admin

MR5

(2013

Version)

32

Hours

Inthiscourse,studentslearntousetheDepartmentofDefense’sHostBasedSecuritySystem. Studentswillhaveaccessto25modulesoflecturesand23hands‐onlabassignments. Acourse quizispresentedattheendandmustbepassedinordertoreceivethefinalcoursecompletion certificate. DODHBSSAdministratorsarerequiredtocompletethiscourseperDODSTIGs.

DISA

HBSS

Advanced

MR4

(2012

Version)

32

Hours

This32hourDISAHostBasedSecuritySystemCourseisafollow‐onfromtheAdminversionof thecourseandintroducesnewproductsandadvancedtopics. Itisintendedforadministrators oftheHBSSMR4baselinewithintheDOD.TheHBSScoursecontains20demonstrations,18 hands‐onlabs,49lectures,andaquizthatusersmustpasstoreceivetheircertificateof completion.

DISA

HBSS

Advanced

MR5

(2013

Version)

32

Hours

Inthiscourse,studentslearntousetheDepartmentofDefense’sHostBasedSecuritySystem beyondwhattheyhavealreadylearnedintheadministratorversionofthecourse. Students willhaveaccessto25modulesoflecturesand15hands‐onlabassignments. Acoursequizis presentedattheendandmustbepassedinordertoreceivethefinalcoursecompletion certificate. CoursetopicsincludeMcAfee’sSolidcoreApplicationandChangecontrol,Policy Auditor,andDataLossPreventionproducts.

                                                                                                                                                                                                                                     

DISA

HBSS

Compliance

with

CND

Directives

1

Hour

ThiscourseisintendedtoaideintheunderstandingofUSCYBERCOMOPORD12‐1016andhow touseHBSSasaCNDtoolindaytodayoperations. Thefirstmodulewillprovideanoverview oftheOPORD,specificrequirementsandexplanations,anintroductiontotheenhanced

reportingdashboards,resources,andaquickreview. Thesecondmodulewithinthiscoursewill demonstratecompliancewiththeOPORDusingtheenhancedreportingcapabilities.

DISA

HBSS

Management

Roles

1

Hour

This1hourDISAHostBasedSecuritySystemCourseincludesanintroductorymoduledesigned tofamiliarizethosewithoutpreviousknowledgeofHBSStothecomponentsofthesystemand howtheDODisusingit.Italsoincludesamodulethatwillinstructthoseinmanagementroles howtomaintaincompliancewithHBSSdirectives,aswellas,supportsomeoftheirother responsibilitiesusingcomponentsofthesystem.

DISA

HBSS

Supplemental

Content

1

Hour

This1hourDISAHostBasedSecuritySystemCourseincludesaquickintroductiontoprovide HBSSadministrators’seniorleaderswiththeinformationnecessarytochampionHBSSwithin theirorganization. Italsoprovidesadministratorswithmultiplemodulesthatprovidescenario‐

basedtrainingcoveringtopicsthatdidnotmakeitintotheadminoradvancedcourses.

DISA

Symantec

Endpoint

Protection

12.1

32

Hours

Thiscourseprovidestheinformationnecessarytoinstall,configure,andmaintainDISA’s SymantecEndpointProtectionversion12.1withintheDepartmentofDefense. Studentswill access67lecturesand12hands‐onlabassignments.

DISA

Vulnerability

Management

System

(VMS)

16

Hours

ThiscoursepresentsDISA'sVulnerabilityManagementSystemandhowitautomates vulnerabilitytrackingthrougharelationaldatabaseandonlinewebviewsprovidinga

centralizedrepositoryforvulnerabilitystatusinformationandpolicycomplianceinformation. Studentswillaccess5lectures,25demonstrations,and3hands‐onlabassignments.

DNSSEC

Training

Workshop

2

Hours

ThiscoursecoversthebasicsofDNSSEC,howitintegratesintotheexistingglobalDNSand providesastep‐by‐stepprocesstodeployingDNSSEConexistingDNSzones.Topicsinclude DNSSECintroduction,DNSSECmechanisms,signingazone,delegationsigner(DS)RRs,setting upasecureresolver,serveroperationalconsiderationsandDNSSECconclusions.Video demonstrationssupplementthistraining.

                                                                                                                                                                                                                                                                             

DoD

NetOps

100

and

200

4

Hours

TheDoDNetOps100(NetOpsOverview)courseisdesignedtogivestudentsanunderstanding ofwhereDoDisdrivingandwhyitisimportanttohaveajointperspective. NetOps200 (NetOpsAppliedtoGIGOperations)providesanoverviewonsomeofthetools,technologies, andarchitectures.TopicsincludeevolutionofNetOps,Net‐CentricOperations&Warfare (NCOW),GlobalInformationGrid(GIG),elementsofNetOpsandGIGcommandandcontrol requirements.

Einstein

SiLK

Traffic

Analysis

7

Hours

Thiscourseisdesignedforanalystsinvolvedindailyresponsetopotentialcybersecurity incidents,andwhohaveaccesstotheEinsteinenvironment. Thecoursebeginswithan

overviewofnetworkflowandhowtheSiLKtoolscollectandstoredata.Then,thereisasection specifictotheEinsteinenvironment.ThebasicSiLKtoolsarecoverednext,givingtheanalyst theabilitytocreatesimpleanalysesofnetworkflow.AdvancedSiLKtoolsfollow,andcover howtocreateefficientandcomplexqueries.Thecourseculminateswithalabwherestudents usetheirnewskillstoprofileanetwork.

Email

Authentication

Workshop

4

Hours

ThiscurriculumprovidedbyOnlineTrustAlliance(OTA)includesanoverviewoftheissuesand standardsofemailwithdetaileddiscussionfocusingonimplementingandtestingSenderPolicy Framework(SPF)andDomainKeysIdentifiedMail(DKIM). Topicsincludeanemail

authenticationworkshopintroduction,securingtheemailchannel,OTArecommendations– emailauthenticationanddeploymentguide,casestudiesandcontextandresources.

Emerging

Cyber

Security

Threats

(2010)

13

Hours

Thiscoursecoversabroadrangeofcybersecurityelementsthatposethreatstoyour

informationsecurityposture. Thevariousthreatsarecoveredindetailfollowedbymitigation strategiesandbestpractices. Topicsincludecybersecuritypolicy,knowingyourenemy,mobile devicesecurity,cloudcomputingsecurity,RadioFrequencyIdentification(RFID)security,LAN securityusingswitchfeatures,securingthenetworkperimeter,securinginfrastructuredevices, securityandDNSandIPv6security.Videodemonstrationsareincludedthroughouttoreinforce concepts.

Inside

Botnets

3

Hours

Thiscourseisanintroductiontobotnettechnologiesandmotives. Thecoursebeginswithan introductionandworksintothearchitecture,coordination,andhowbotnetsareoperated. Alsocoveredarecurrenttrendsinbotnettechnologyandhowtodefendagainstbotnets. Besidesseveralchapterreviewquizzes,alabexerciseisincludedthatwalksstudentsthrough theprocessofbuildingandcontrollingabotnet,andexecutingattacksagainstotherhosts.

                                

                                                                                       

                              

                        

                                                      

Internet

Security

Fundamentals

3

Hours

TheInternetSecurityFundamentalscoursebeginswithanoverviewofhowtheInternetworks andanintroductiontosecurity. StudentsalsoreceiveanoverviewoftheOSIReferenceModel, networkrouting,IPv4,andDNSconcludingwitha“HowtheInternetWorks”quiz.

Introduction

to

HTTP/HTTPS

Analysis

2

Hours

ThepurposeofthismoduleistoexplaintheHTTPandHTTPSprotocols,todemonstrateattacks usingtheseprotocols,andtoprovideexperienceinanalyzingtheseattacks.Topicsincludean introductiontoHTTP‐HTTPSanalysis,purposeofHTTP,HTTPprotocol,examplesofHTTP requestandresponse,stateinHTTP,HTTPSprotocol,detectingandanalyzingattacks,using packets,Wireshark:SiLKAnalysisStartRwfilter,typesofattacks,informationgathering,server behavioralanalysis,packet‐baseddetectinggathering,flow‐baseddetectinggather,log‐based detectinggathering,cross‐sitescripting,packet‐and‐flow‐baseddetectingXSS,Cross‐Site RequestForgery(CSRF),scopeofCSRFattacks,detectingandpreventingCSRF,SQLinjection definitionandscope,blindSQLinjection,fingerprintingSQLdatabase,detectingSQLinject,CGI BINattacks,HTTPresponsesplittingandHTTPrequestsmuggling.Videodemonstrations,alab, andaquizarepartofthetraining.

Introduction

to

Insider

Threat

5

Hours

Theinsiderthreatcourseintroduceswhatinsiderthreatis,typesofthreatsposed,whothe maliciousinsidersare,andinsiderthreatmitigation. Thereareseveralexercisesreviewing insiderITsabotageaswellasseveralinsiderthreatcasestudies.

Introduction

to

Investigations

of

Digital

Assets

4

Hours

ThiscourseisdesignedfortechnicalstaffwhoarenewtotheareaofDigitalMediaAnalysisand Investigations. Itprovidesanoverviewofthedigitalinvestigationprocessandkeyactivities performedthroughouttheprocessandvarioustoolsthatcanbeusedtoperformeachactivity.

Introduction

to

IPv6

5

Hours

ThisclassprovidesabriefprimeronIPv6.ItcoversthefeaturesofIPv6,comparesittoIPv4,and describessecurityfeaturesindetail.Itcoverstransitionstrategiesandfinisheswithdemosof thesuiteonvariousoperatingsystemsandincludesahands‐onlab.

Introductory

Control

Systems

Security

(ICSST)

6

Hours

TheIntroductiontoControlSystemsSecurityisaDHScoursethatdiscussesthevulnerabilities ofSCADAsystems,theimpactifthosevulnerabilitieswereexploited,howtorecognizeand reportacyber‐incident,andmitigationapproaches. Reinforcingdemosareincludedinthis

                                                                                                                                                                                                                                                                        

IPv6

Security

1

Hour

ThispresentationaddressesIPv6security. Topicsincludeconcepts,threats,network reconnaissance,networkreconmitigationstrategies,networkmapping,networkmapping mitigationstrategies,neighbordiscovery,attacks,attackmitigationstrategies,tunneling, tunnelingmitigationstrategiesandbestpractices.Thepresentationhasseveralreinforcing videodemonstrations.

ISACA

Certified

Information

Security

Auditor

21

Hours

TheISACACertifiedInformationSecurityAuditor(CISA)certificationprepcourseprepares studentstositfortheCISAcertificationexamaswellasprovidesthestudentswithtraining assetstostrengthentheiraudit,control,andmonitoringskillstoapplytotheirinformation technologyandbusinesssystems.TopicsincludeintroductiontotheISauditprocess,

introductiontoITgovernance,projectmanagement,ISoperationsandservicemanagement, introductiontoinformationsecuritymanagement,introductiontobusinesscontinuityand disasterrecoveryplanning.Videodemonstrationsandanexamarepartofthetraining.

ISACA

Certified

Information

Security

Manager

18

Hours

TheISACACertifiedInformationSecurityManager(CISM)certificationprepcourseprepares studentstositforthemanagement‐focusedCISMexamaswellasstrengthenstheir

informationsecuritymanagementexpertisethroughthein‐depthcoursewareandreinforcing demonstrations. TopicsincludeCISMintroduction,informationsecuritygovernance,

informationriskmanagement,informationsecurityprogramdevelopment,informationsecurity programmanagement,incidentmanagementandresponse.Videodemonstrationsandaquiz areincludedinthetraining.

ISACA

Certified

Information

Security

Manager

2013

11

Hours

TheISACACertifiedInformationSecurityManager(CISM)2013certificationprepcourseself studypreparesstudentstositforthemanagement‐focusedCISMexamaswellasstrengthens theirinformationsecuritymanagementexpertisethroughthein‐depthcourseware,reinforcing demonstrations,andfinalquiz.Thecoursecoverstopicsfromthefourdomainsfeaturedinthe CISMcertification:InformationSecurityGovernance,InformationRiskManagementand Compliance,InformationSecurityProgramDevelopmentandManagement,andInformation SecurityIncidentManagement.

(ISC)2™

CAP

(R)

Prep

10

Hours

Thiscertificationprepcourse,completewitha100‐questionpracticeexam,isdesignedtohelp preparestudentsforthe(ISC)2CAP–CertifiedAuthorizationProfessionalcertificationexamas wellasstrengthentheirknowledgeandskillsintheprocessofauthorizingandmaintaining informationsystems. Topicsincludeunderstandingsecurityandauthorizationofinformation, categorizinginformationsystems,selectingsecuritycontrols,implementingsecuritycontrols, assessingsecuritycontrols,authorizinginformationsystemsandmonitoringsecuritycontrols.

                                            

                                                                                                                                                                   

                          

(ISC)2™

CISSP

Certification

Prep

20

Hours

The(ISC)2CertifiedInformationSystemsSecurityProfessional(CISSP)certificationprepcourse confirmsanindividual’sknowledgeintheinformationsecurityfield.Theobjectivesforthe CISSPcertificationexamwereupdatedinthefirstquarterof2012,sotheFedVTEcourseupdate reflectsthenewCISSPobjectivesandthetendomainsuponwhichtheexamisbased. This coursealsoincludeshands‐onlabs.

(ISC)2™

CISSP

(R)

Certification

Prep

Version

2

27

Hours

Thiscertificationprepcourse,completewithpracticequizzesforeachdomainaswellasa100‐

questionfinalquizisdesignedtopreparethestudenttositforthe(ISC)2CertifiedInformation SystemsSecurityProfessional(CISSP)certificationexam,aswellasapplyknowledgefromthe vastbreadthofinformationsecuritycontentintheireverydayduties. Thecoursewas

developedbasedonthe10(ISC)2CISSPdomains.

(ISC)2™

CISSP

Concentration:

ISSAP

15

Hours

TheInformationSystemsSecurityArchitectureProfessional(ISSAP)concentrationoftheCISSP certificationprepcoursepreparesstudentswithsecurityarchitectandanalystexperiencetosit forthe(ISC)2ISSAPcertificationexam. Thiscourseincludesa100‐questionpracticeexamand includesvideodemonstrationsreinforcingmanyofthetopicsincludedinthesixdomainsofthe ISSAP.

(ISC)2™

CISSP

Concentration:

ISSEP

12

Hours

TheInformationSystemsSecurityEngineeringProfessional(ISSEP)concentrationoftheCISSP certificationprepcoursepreparesstudentswithsystemssecurityengineeringexperiencetosit forthe(ISC)2ISSEPcertificationexam. Thiscourseincludesa100‐questionpracticeexamand wasdevelopedfollowingthefourdomainsoftheISSEP.

(ISC)2™

CISSP

Concentration:

ISSMP

13

Hours

TheInformationSystemsSecurityManagementProfessional(ISSMP)concentrationoftheCISSP certificationprepcoursepreparesstudentswithmanagementexperiencetositforthe(ISC)2 ISSMPcertificationexam. Thiscourseincludesa100‐questionpracticeexamandincludesvideo demonstrationsreinforcingmanyofthetopicsincludedinthefivedomainsoftheISSMP.

*(ISC)2

CISSP

Concentration:

ISSMP

2013

15

Hours

TheInformationSystemsSecurityManagementProfessional(ISSMP)concentrationoftheCISSP concentrationcertificationprepself‐studycoursewasupdatedtoreflectthe2012updated examobjectives. Thecoursereviewsthecommonbodyofknowledgeforthe2013CISSP‐ISSMP

                                                                                                                                                                                                                                                          

(ISC)2™

Systems

Security

Certified

Practitioner

16

Hours

TheSystemsSecurityCertifiedPractitioner(SSCP)certificationprepcourseisaself‐study resourceforthosepreparingtotakethe(ISC)2SSCPcertificationexamaswellasthoselooking toincreasetheirunderstandingofinformationsecurityconceptsandtechniques. The

certificationisdescribedasbeingidealforthoseworkingtowardspositionssuchasnetwork securityengineers,securitysystemsanalysts,orsecurityadministrators. Thiscourse,complete witha100‐questionpracticeexamandvideodemonstrations,wasdevelopedbasedonthe sevenSSCPdomains.

Linux

Operating

System

Security

9

Hours

ThiscourseintroducesstudentstothesecurityfeaturesandtoolsavailableinLinuxaswellas theconsiderations,advantages,anddisadvantagesofusingthosefeatures.Theclasswillbe basedonRedHatLinuxandisdesignedforITandsecuritymanagers,andsystem

administratorswhowanttoincreasetheirknowledgeonconfiguringandhardeningLinuxfrom asecurityperspective.

Malware

Analysis

12

Hours

Thiscourseisfortechnicalstaffresponsibleforhandling,storing,andanalyzingmaliciouscode. Itprovidesabasicintroductiontomalwareanalysis,bestpractices,trendsandintruder

techniques,andanalyzingandcharacterizingmaliciouscode.

Mobile

Security

19

Hours

ThepurposeoftheMobileSecuritycourseistolearnaboutmobiledevicesandhowtosecure them. Thecoursebeginswithanintroductiontocellularandwirelesstechnologiesandmoves intothreatstomobiledevices,howtosecurethem,andmobileforensicsandinvestigations. Thecoursecontainsvideodemonstrations,exercises,andafinalquiz.

Monitoring

for

Insider

Threat

6

Hours

Thepurposeofthismoduleistoraiseawarenessofinsiderthreatrisks,identifytheindicators andprecursorsofmaliciousacts,demonstratetoolstodetectmaliciousbehavior,andreview actualcasestoshowhowcountermeasurescanbeeffective.Topicsincludemonitoring strategiesforinsiderthreatdetection,maliciousinsideroverview,problemareasondefense, desiredandcurrentstate,2009E‐CrimeWatchSurvey,overviewofpriorresearch,insider threatportfolio,typesofinsidercrime,insiderITsabotage,unknownaccesspaths,monitoring strategies,perimetercontrolsproblemandsolutionstrategies,sabotageexfiltratingcredentials oftheIRC,typesoffraud,fraudconsiderations,theftofintellectualproperty(IP),topobserved theftofIPexploitsandvulnerabilities,dataleakageproblem,roguedevicesproblem,remote accessattemptsproblem,casestudiesofIPtheft,derivingcandidatecontrols,derivingcontrols andindicatorsandderivingcontrols.Videodemonstrations,alab,andaquizarepartofthe training.

                                               

                                                                                                                                                                                               

NCSD

TDP

Information

Security

Fundamentals

13

Hours

ThiscompetencyareaprovidesNCSDstaffwithanoverviewofbasicconceptsininformation security.ItbuildsuponandextendsthegeneralITsecurityawarenesstrainingrequiredofall federalemployees.Topicsincludeanintroductionandoverview,historyanddevelopmentof theInternet,commonthreats,vulnerabilitiesandattacks,riskmanagement,resilience management,incidentmanagement,incidentresponse,overviewofUS‐CERT,overviewof controlsystemssecurityandoverviewofcriticalinfrastructurecybersecurity.

NCSD

TDP

Intro

to

Digital

Investigations

1

Hours

Thispresentationcoverscomputerforensics(includinganintroduction)andtopicssuchasthe process,followingon‐siteprocessforencryption,memoryandverification,followingthe processforanalysis,reportfindingsanddatapreservation,andcomputerforensiclaws.Aquiz ispartofthetraining.

Network

Monitoring

with

Open

Source

Tools

5

Hours

TheNetworkMonitoringwithOpenSourceToolscoursewasdesignedtogivethelearnera generalawarenessofnetworksecurityandmonitoringconcepts.Discussionsand

demonstrationsfocusonnetworkthreats,toolsandtheircapabilities. Aftercompletionofthe course,studentsshouldbeabletodetectattacksusingnetworkmonitoringtools.

Networking

Fundamentals

3

Hours

ThiscoursecoverstheOSImodel,media,routing,andtheTCP/IPstack. Thematerialis extractedfromtheintroductiontotheCiscoCCNAtrainingcourse.

Octave

5

Hours

Inthiscourse,studentslearntoperforminformationsecurityriskassessmentsusingthe OperationallyCriticalThreat,Asset,andVulnerabilityEvaluation(OCTAVE)approach. The OCTAVEapproachprovidesorganizationsacomprehensivemethodologythatfocuseson informationassetsintheiroperationalcontexts. Risksareidentifiedandanalyzedbasedon wheretheyoriginate–atthepointswhereinformationisstored,transported,andprocessed. Byfocusingonoperationalriskstoinformation,studentslearntoviewriskassessmentinthe contextoftheorganization’sstrategicobjectivesandrisktolerances.

Penetration

Testing

14

Hours

ThePenetrationTestingcoursediscussesconcepts,tools,andtechniquesforconductinga penetrationtest. Thecourselaysthegroundworkwithfamiliarethicalhackingconcepts,moves intopenetrationtestingmethodsanddeterminesthemosteffectivepenetrationtoolforthe

                                                                                                                                                                                                                                  

Python

Scripting

for

SiLK

3

Hours

ThepurposeofthiscourseistoprovideanalystswithanintroductiontothewaysPython scriptingcanextendandautomatedifferentanalysistaskswithaspecificfocusonscripting withSiLKtoolsuite. Videodemonstrations,hands‐onexercises,andafinalquizarepartofthis course.

RaD

‐

X

101

for

CND

Analyst

6

Hours

TheRapidExperienceBuilder(RaD‐X)forComputerNetworkAnalystcourseisdesignedfor ComputerNetworkDefendersandotherstakeholderswhomaybeinvolvedintheactive defenseofDoDsystems.Studentsshouldhaveatleastacursoryknowledgeofpacketanalysis andopen‐sourcepacketinspectiontools.Thereareaseriesofsix(6)labs. Eachlabincreasesin complexityandfocusesontheskillofpacketanalysis,differentiationbetweenmaliciousand benignTCP/IPtraffic,anddevelopmentofappropriaterecommendationsformitigating potentialthreats.

Reverse

Engineering

101

8

Hours

Thiscourseprovidesanintroductiontox86assemblycode,discussesseveralreverse

engineeringtools,exploresthefundamentalsoftheMicrosoftWindowsoperatingsystemand API,andthebasicsofperformingstaticanalysisofWindowsmalware.Topicsincludereverse engineeringincontextofmalwareengineering,MSWindows:Aninterfacetoacomputer,MS Windowsdatatypes,WindowsAPIexercise:writingcode,reverseengineeringtools:IDAPro andOllyDbgtheDebugger,computermechanicsandassemblycode,IntelX86architecture, registerandarithmetic,howstackmemoryworks,controlflowandtestinstructions,common constructs/structure,calladdress/function,cryptoalgorithmsanda“WheretoGofromHere” summary.Videodemonstrations,labs,andaquizarepartofthetraining.

Software

Assurance

for

Executives

10

Hours

Thiscourseisdesignedforexecutivesandmanagerswhowishtolearnmoreaboutsoftware assuranceasitrelatestoacquisitionanddevelopment.Thepurposeofthiscourseistoexpose participantstoconceptsandresourcesavailablenowfortheirusetoaddresssoftwaresecurity assuranceacrosstheacquisitionanddevelopmentlifecycles

Supply

Chain

Awareness

1

Hour

This60‐minutepresentationaddressessupplychainawarenessforhardwareandsoftware. A lectureandsetofoptionalslides(SupplyChainAwareness–HardwareandSupplyChain AwarenessSoftware)areavailable.Aquizispartofthistraining.

                                                      

                                                                                                                                                                                    

Supply

Chain

Risk

Management

Awareness

.5

Hour

TheSCRMAwarenessCourseisatwenty‐minuteVirtualTrainingEnvironment(VTE)compliant course. Thiscoursewillprovidestudentswithknowledgeaboutthegrowingsophisticationof supplychainexploitationfacinggovernmentandprivateindustryonInformationand

CommunicationTechnology(ICT)systems. Additionally,thecoursewillhelpstudents

understandhowsupplychainriskmanagementcanaffectrequirements,acquisitionpractices, andoperationalrequirements

.

Technical

Mentoring

–

Technical

Writing

3

Hours

TheTechnicalWritingcourseisdesignedforstaffwhoarenotprofessionallytrainedwritersbut whomustwriteaspartoftheirjobs. Thedocumentstheywritemostoftenincludeemails, reports,leadershipalertsandseniorleadershipdailies. Severalwritingexamplesandactivities complimentthecourselecture.

US

‐

CERT

TM

Incident

Handler

40

Hours

Thepurposeofthiscourseistolearnaboutfundamentalconceptsforperformingincident handling. Alongwithsupportinglabs,videodemonstrations,anddocumentresources,topics includeCSIRTmanagementissues,codeofconduct,incidenthandlingmethodology,

coordinatingresponse,handlingmajorevents,workingwithlawenforcement,malware handlingandstorage,vulnerabilityremediation,analysisandreporting.Thecourseincludesa quizaswell.

US

‐

CERT

TM

Malware

Analysis

7

Hours

Thiscourseisgearedtohandling,storing,andanalyzingofmaliciouscode.Topicsinclude malwarehandlingandstorage,malwareobfuscationandcontentfrominsidebotnets,building aruntimeanalysisenvironment,introductiontomalwareanalysis,malwareruntimeanalysis (US‐CERTTM),reverseengineering101(US‐CERTTM)andmaliciouscodecourses.

Videodemonstrations,labs,andquizzesarepartofthetraining.

US

‐

CERT

TM

Malware

Analyst

8

Hours

Thepurposeofthiscourseistolearnaboutfundamentalconceptsforhandling,storingand analyzingmaliciouscode. Topicsinthiscourseincludebasiclogfileanalysis,datahidingand encryption,workingwithlawenforcementandintroductiontomalwareanalysis. Thiscourse containsseveralsupportinglabs,videodemonstrations,andafinalquiz.

                                                                                                                                                                      

US

‐

CERT

TM

Network

Analyst

30

Hours

Thepurposeofthiscourseistolearnhowtoperformsurfaceanalysisonnetworktraffic. TopicsincludeintrotoPCAPanalysisandSigdevelopment,malwarehandlingandstorage, malwareobfuscation,networksecurityfromtrafficanalysisperspective,Pythonscriptingfor SiLK,insidebotnetsandIPv6.Thiscoursecontainsseveralsupportingvideodemonstrationsand hands‐onexercises.

Using

Linux

for

Analysis

(ULA)

4

Hours

ThiscoursedescribesthebasicarchitectureofaLinuxsystem,explainshowtousecommon commandlineutilitiesonaLinuxsystemforanalysispurposes,andhowtoperformanalysis worksuchasmalwareandincidentresponseanalysis. Thiscourseincludesseveralreinforcing videodemonstrations.

Wi

‐

Fi

Communications

and

Security

9

Hours

ThepurposeoftheWi‐FiCommunicationsandSecuritycourseistoteachthetechnologiesof the802.11familyofwirelessnetworking,includingtheprinciplesofnetworkconnectivityand networksecurity.

Windows

Operating

System

Security

16

Hours

ThiscourseintroducesstudentstothesecurityaspectsofMicrosoftWindows. Theclassbegins withanoverviewoftheMicrosoftWindowssecuritymodelandsomeofthekeycomponents suchprocesses,drivers,theWindowsregistry,andWindowskernel. Anoverviewoftheusers andgrouppermissionstructureusedinWindowsispresentedalongwithasurveyofthe attackscommonlyseeninWindowsenvironments. Patching,networking,andthebuilt‐in securityfeaturesofWindowssuchasthefirewall,anti‐malware,andBitLockerareallcovered inlightdetail.