System Security Certified Practitioner (SSCP 2018): Security Assessments


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level



Overview/Description

This 15-video course prepares learners for the Systems Security Certified Practitioner (SSCP) certification exam by exploring security assessments, vulnerability scans, and penetration testing. First, you will examine the Nmap (network mapper) scanner to probe computer networks for host discovery, service, and operating system detection. You will learn how to use Nmap to conduct a network scan by using Windows. This course examines vulnerability scanning, and it demonstrates how to do penetration testing to identify and exploit host and network weaknesses. Learners will examine the importance of monitoring and analysis to identify security incidents. You will learn how to use a Windows performance monitor, and how to monitor resource usage in Linux. Continue by examining LANguard and end map assessments. This course then demonstrates how to view system logs to troubleshoot problems, and how to enhance the security of a network. You will learn how to configure log filtering in a Windows environment. Finally, learners will explore SCADA (Supervisory Control and Data Acquisition), and SIEM (for Security Information and Event Management).



Expected Duration (hours)
1.0

Lesson Objectives

System Security Certified Practitioner (SSCP 2018): Security Assessments

  • Course Overview
  • describe security assessment considerations
  • explain the purpose of a vulnerability assessment
  • run a network scan using Nmap in Windows
  • run a network scan using Nmap in Linux
  • explain the purpose of a penetration test
  • describe how monitoring can enhance security
  • add metrics to a performance monitor chart
  • use commands such as top to monitor performance in Linux
  • describe how logging relates to security
  • filter log events in the Windows Event Viewer
  • enable rsyslog forwarding between Linux hosts
  • explain SCADA and ICS
  • define how SIEM allows for the timely analysis of security events
  • monitor system performance to identify abnormal activity
  • Course Number:
    it_spsscpdj_13_enus

    Expertise Level
    Intermediate