NT300: Design & Implementation of Secure Enterprise Networks

Agenda:

• Key definitions and term clarifications
  
  
• Network fundamentals review
  
  
• Network Threat Potentials
  • Port scanning, sniffing, session hijacking, spoofing
  • Standard exploits, buffer overflows
  • Denial of service attacks
  • Man-in-the-Middle attacks
  • Emerging threat scenarios: Container environment attacks (Docker/Kubernetes), Cloud API attacks, CDN and SDN infrastructure attacks
    
    
• Basic elements for secure networks
  • Packet filter / stateful firewalls
  • Bridging firewalls
  • Proxy services
  • Virtual private networks (VPN)
  • Intrusion detection
  • System diagnostic tools
  • Exfiltration
  • Next-Generation Firewalls (NGFW) with Application Layer Security and Threat Intelligence
  • Network Behavior Anomaly Detection (NBAD) as complement to traditional IDS/IPS
  • Zero-Trust architecture approaches (Microsegmentation, Identity-based Access Control)
    
    
• Architecture and network topologies
  • Cascaded firewall systems
  • Demilitarized zones (DMZ)
  • Honeypots
  • Multicloud / hybrid cloud / API
  • Compliance and security in hybrid cloud and multi-cloud environments (Cloud Security Posture Management, encryption, data classification)
  • Software Defined Networking (SDN) and Content Delivery Networks (CDN) – opportunities and security implications
    
    
• Security management introduction
  • Patch and vulnerability management
  • Penetration testing and Red Teaming
  • ISMS and BCMS fundamentals
  • Incident response
  • Implementation of log monitoring and SIEM systems for attack detection and forensics

Objectives:

You will learn not only classic fundamentals, but also modern concepts such as Zero Trust, Next-Generation Firewalling, container security, hybrid cloud security, SDN/CDN architectures, and the implementation of SIEM/log monitoring for real-time detection.

Target audience:

The course NT300 Design & Implementation of Secure Enterprise Networks is targeted at:

• System administrators
• Network administrators
• Internet and intranet administrators
• IT security decision makers

Prerequisites:

Description:

Advanced developments such as artificial intelligence, machine learning and analytics bring new network requirements to the forefront. Today's networks must be automated, cloud-enabled and intelligently controlled. They require an architecture that is not only performant, but also resilient against modern attacks.

This includes zero-trust models, next-generation firewalling, security in hybrid cloud/multi-cloud environments, container security, as well as the integration of SDN, CDN and SIEM systems.

The increasing number of end devices and mobile employees is addressed in a practical manner, allowing participants to take away tried-and-tested best practices.

The workshop NT300 Design & Implementation of Secure Enterprise Networks is a practice-oriented introduction to modern network security and combines classical fundamentals with the latest trends and technologies, so that participants are optimally prepared for both current and future requirements.