NORTH AMERICA EMEA ASIA
All programs BankAudit 2013 InfoSec World Conference & Expo 2013 SuperStrategies Conference & Expo 2013 The Conference on Big Data Security
All programs The Audit Directors & Managers Symposium The MIS Audit Leadership Institute The MIS CAE Master's Program
ABOUT MIS INTERNAL AUDIT IT AUDIT INFO SECURITY IN-HOUSE TRAINING  
 
     Conferences            >      Seminars            >      Symposia            >      Webinars      Online Self Study      Training Weeks      In-House Training      Certificate Programs>      Exhibiting Info      Ways to Save      Request Info      Event Downloads      White Papers      Call for Instructors      Contact MIS      Site Map
Internal Audit IT Audit Info Security
Internal Audit IT Audit Info Security
Introduction to Windows Security and Audit - ASO202  NEW! 
A Comprehensive Tutorial on the Basics of Auditing and Security Windows
Learning Level: Basic
CPEs: 24 Fee: $2,695.00
Focus and Features Who Should Attend Agenda Register
Agenda

What You Will Learn

1. Windows Basics 
  - past, present, and future of Windows
  - what is most common today for AD and desktops?

2. What is Being Protected? 
  - corporate resources
  - financials
  - HR information
  - IP
  - personal information

3. Who Are We Protecting From? 
  - internal attacks
  - external attacks
  - phishing and mass distribution attacks

4. Why Do We Need to Protect? 
  - Windows is everywhere
  - Windows has vulnerabilities
  - we can’t trust all companies/Admins
  - mandates require audits

5. What is the Auditor’s Role? 
  - gather current state of computers
  - ensure policies and procedures are being met
  - analyze correct security control points
  - expedite gathering, analyzing and reporting of information
  - provide guidance and recommendations for incorrect security configurations

6. Working with Administrators 
  - understanding the Administrators role in a corporation
  - understanding the demands on an Admin
  - how to approach an Admin
  - how to communicate with an Admin
  - how to ask for information from an Admin

7. Windows Server and Desktop Tour 
  - Windows File System
  - start menu
  - Control Panel
  - administrative tools
  - command line tools

8. Understanding Microsoft Windows in a Corporation 
  - desktops
  - servers
  - domain
  - Windows networks
  - authentication
  - security control

9. Understanding Authentication 
  - what does authentication mean?
  - why users must authenticate
  - what authentication accomplishes
  - which computers are used in authentication

10. Accessing Resources on a Windows Network 
  - understanding files and folders
  - organizing files and folders on desktops and servers
  - accessing files and folders from a desktop to a server
  - understanding shared folders

11. Types of Windows Networks 
  - workgroups
  - auditing workgroup computers
  - Active Directory domains
  - benefits of Active Directory

12. Understanding Active Directory’s Role 
  - Active Directory terminology
  - Domain, Tree, Forest roles
  - Domain controller functionality
  - trust relationship functionality
  - common Active Directory uses

13. Gathering Initial Active Directory Information 
  - Domain and Forest information
  - Domain Controller information
  - organizational unit information
  - server information
  - trust relationships
  - auditing Active Directory initial information

14. User Accounts 
  - local users
  - default local users
  - domain users
  - default domain users
  - logging on
  - common user policies and procedures for corporations
  - key user account properties that need to be audited
  - auditing user account information

15. Group Accounts 
  - local groups
  - default local group
  - default “Admin” local groups
  - domain groups
  - default domain groups
  - default “Admin” domain groups
  - common group policies and procedures for corporations
  - auditing group membership

16. Windows Passwords 
  - password attacks
  - LANManager issues
  - Default Windows Password Policy
  - Windows Server 2008/2008 R2 Fine-grained Password Policies
  - use of Pass Phrases
  - auditing the domain password policy
  - auditing the local password policy

17. Essential Security Features 
  - last logon name
  - legal notice
  - Ctrl-alt-del
  - Anonymous

18. Auditing Network Resources 
  - resources (files, folders)
  - shares

 

 
REGISTRATION QUESTIONS?
For questions about your registration, government and team discounts, or multiple registrations, please call Linda Ronconi at (508) 879-7999, ext. 501 or e-mail mis@misti.com.

IN-HOUSE SEMINARS
This seminar is available in-house. For more information about bringing this or other MIS seminars to your organization, please call Mimi Hatch at (410) 692-2465 or e-mail mhatch@misti.com.

 


Dates/Locations
March 13 - 15, 2013
New York
October 23 - 25, 2013
San Francisco