The most trusted source for computer security training, certification and research.

select a course
Amsterdam, Netherlands - June 16 - 21, 2008
Global Information Assurance Certification

Provided more depth on available tools than any other conference!
-Eric Moriak, Flowserve


Additional Events: Please see Secure Europe 2008 for more info on other SANS Secure Europe Events.

AUDIT 507

Auditing Networks, Perimeters & Systems

Monday 16 June - Saturday 21 June 2008
Tanya Baccam, SANS Senior Instructor
6 CPE Credits Per Day

This course is the end product of over one hundred skilled system, network, and security administrators working with one common goal - to improve the state of information security.

Audit 507, like all SANS courses, is based on known and validated threats and vulnerabilities. These threats and vulnerabilities are explained based on validated information from real world situations that can be used to raise awareness within an organization and build an understanding of why auditing is important. From these threats and vulnerabilities, we build the countermeasures and defenses including instrumentation, metrics and auditing. The course begins with a high-level introduction on methods and audit programs. It then takes you through all the particulars of how to actually audit devices and IT systems that range from firewalls and routers all the way down to the underlying operating systems.

You'll be able to use what you learn the day you get home. Five of the six days in the course will include hands-on exercises with the tools discussed during the lecture sections. Each student is invited to bring their own Windows 2000 or higher laptop for use during class. The hands-on exercises will allow you to experiment with the audit tools discussed in class and to actually perform audit functions against SANS-provided servers in class. A great audit is more than marks on a checklist; it is the understanding of the best practices, system analysis and forensics. Sign up for this course and experience the mix of theory, hands-on, and practical knowledge.

WebScarab demo by David Hoelzer. Download will take several minutes.
http://www.enclaveforensics.com/page6/page6.html

SANS provides the best up to date training relating to security issues. The sessions are relevant and well presented with well written manuals.
-Ravindranath Goswami, The Power Generation Company of Trinidad and Tobago Ltd.

Author Statement

The SANS Advanced Systems Audit course stands alone in the Information Assurance arena as the only comprehensive source for hands on audit "How To." Past students have included long time auditors and those new to the field, both of whom have found significant benefit from the refresher material. One individual, a vice president with the IIA (Institute of Internal Auditors) said, "I've been auditing systems for a very long time and no one ever actually gave me a formal process that I can apply to conducting technical audits. Thank you!" While we don't require a high level of technical experience as a prerequisite to this course, we have worked hard to make sure that anyone who comes to the course walks away with a wealth of material that they can go back to their office and apply tomorrow. We realistically address the "How do I get there from here?" problem by offering short-term goal solutions which, when combined, will allow you to achieve your goal: identify, report on and reduce risk in your enterprise.
- DAVID HOELZER