tark.ee
tark.ee

BlackBelt - Securing Windows 10/11 and Server 2016/2019

Join this four-day workshop by Sami Laiho, one of the world’s leading Windows Security experts and make sure you are prepared for the future. During this hands-on training, you will see why proactive security is mandatory and also learn to implement it in practice.

IT Koolitus
Kirjeldus
Gartner has said that one of the most needed changes in enterprise security is to move to a least privilege approach, whitelisting of applications and overall proactive security. Microsoft said in February 2018 that 85% of all security threats would have been mitigated by moving to proactive security.
Sihtgrupp
The course is intended for administrators and security professionals, who want to ensure their environments are prepared for the new security era, where traditional security measures like anti-malware are not effective anymore, and who want to make the best out of what Windows 10/11 and Server 2019 have to offer.
Programm
  • Day 1:
    • Introduction to the current and future state of IT security
    • The showcase of how Windows really gets hacked!
    • Implementing hard disk encryption – Building a BulletProof BitLocker!
    • Implementing shielded VMs and Virtual TPMs
    • Cornerstones of Windows Security – How the Security Subsystem really Works
    • Using Baselines to protect clients and servers (and how to fix Microsoft’s broken default ones)
  • Day 2:
    • Implementing the principle of least privilege – getting rid of admin rights!
    • Correct use of different levels of admin accounts in an enterprise
    • Why and How to use UAC effectively
    • Using containers and Windows Defender Application Guard to increase security
    • Server 2016/2019 Bastion/Red/ESAE forests and how to secure Active Directory
    • Protecting infrastructure services like DHCP, DNS and AD DCs
  • Day 3:
    • Mitigating Pass-The-Hash attacks and what ever Mimikatz can do to you
    • Implementing Credential Guard and other Secure Kernel Technologies
    • Getting rid of lateral movement of admin accounts – Implementing a three tier infrastructure
    • Correct decisions when choosing secure hardware in the futuure
    • Moving to Biometrics and Two-Factor Authentication
  • Day 4:
    • Implementing the PAW – Privileged Access Workstation
    • Securely managing Servers
    • Protections RDP-connections
    • Implementing Whitelisting in Windows
    • AppLocker and Device Guard in Windows 10
    • Implementing REALISTIC Security in REAL life – comparing Office desktops to workstations that can launch missiles
Omandatavad oskused
  • to secure the Windows OS;
  • BitLocker works;
  • to use Baselines;
  • to achieve the Principle of Least Privilege;
  • to build Directory Tiering;
  • to deploy Allow-Listing;
  • Shielded VMs work.
Tunnistus
Participants who have completed the training will be issued a certificate. The prerequisite for issuing a certificate is full participation in training and achievement of learning outcomes. The acquisition of learning outcomes is assessed during the training through practical assignments. For participants who have not achieved the learning outcomes, a certificate of attendance will be issued upon request.
Eeldused
Basic experience with Windows Administration, Basic understanding of Active Directory, Basic understanding of networking infrastructure.
Lisainfo
  • hot drinks with cookies;
  • fresh fruits;
  • teaching materials;
  • a trainer's consultation on the topics learned by e-mail after the training;
  • a certificate.
Investeering

Hind kokkuleppel

Vajan seda oma tiimile
Aitame koostada päringu

See koolitus hetkel ei toimu

Küsi lisainfot. Aitame leida sarnase koolituse või panna sinu soovi kirja.

Registreeru