Training

IT security courses

by Mark Rowe

SANS London Spring runs from February 29 to March 5 in the Grand Connaught Rooms in London’s West End. Among the IT security courses is the recently updated AUD507: Auditing and Monitoring Networks, Perimeters and Systems.

According to course author David Hoelzer, “One of the struggles that IT auditors face today is assisting management to understand the relationship between the technical controls and the risks to the business that these affect. This track is organised specifically to provide a risk driven method for tackling the enormous task of designing an enterprise security validation program.”

Hoelzer, a SANS Fellow instructor and author of more than 20 sections of SANS courses, was recently called upon to serve as an expert witness for the Federal Trade Commission for GLBA Privacy Rule litigation. Over a 25 year career, Hoelzer has also written and contributed to more than 15 peer reviewed books, publications, and journal articles on all manner of security topics including works on audit.

Hoelzer says: “In today’s information security world, most enterprises are either already moving toward or seriously considering moving toward compliance with any number of a variety of security standards that represent best practice. One of the key topics covered in this material is an effective risk based method for the specification or selection of controls. This skill set allows you to analyse an existing set of controls, a business process, an audit exception or a security incident, identifying any missing or ineffective controls. More importantly, perhaps, you will be able to easily identify what corrective actions will eliminate the problem in the future.”

As a SANS instructor, Hoelzer has trained security people from organisations including NSA, DHHS, Fortune 500 security engineers and managers. In his view, “Auditors, Administrators and Security Managers alike walk away with a ‘To-Do’ list far longer than the one that they arrive with. The aim is to align your security operations and auditing with business operations in a way that delivers the biggest return on investment.”

Many courses at SANS London Spring have an associated GIAC examination and certification attempts are available at a reduced rate when bundled with training. SANS are also offering an OnDemand version of courses at a discounted rate to assist with exam preparation. The full list of courses:

SEC560: Network Penetration Testing and Ethical Hacking with Erik Van Buggenhout
SEC401: Security Essentials Bootcamp Style with Dr Eric Cole
SEC504: Hacker Tools, Techniques, Exploits and Incident Handling
SEC542: Web App Penetration Testing and Ethical Hacking with Pieter Danhieux
SEC760: Advanced Exploit Development for Penetration Testers with Jake Williams
FOR508: Advanced Digital Forensics and Incident Response with Jess Garcia
FOR526: Memory Forensics In-Depth with Alissa Torres
AUD507: Auditing and Monitoring Networks, Perimeters and Systems with David Hoelzer

The event also offers evening socialising; visit https://www.sans.org/event/london-in-the-spring-2016/.

Related News

  • Training

    Derby cyber date

    by Mark Rowe

    Derbyshire and Nottinghamshire Chamber of Commerce are hosting an event in Derby on Friday, November 29, to raise awareness of the online…

  • Training

    Spring 2017 roadshows

    by Mark Rowe

    After two sets of roadshows in 2016, the manufacturer Hikvision UK & Ireland is running another. The dates and venues are: Dublin,…

  • Training

    Cloud computing day

    by Mark Rowe

    Whitehall Media’s 5th Enterprise Cloud Computing and Virtualisation conference is to run at Hotel Russell in central London on Thursday, March 20.…

Newsletter

Subscribe to our weekly newsletter to stay on top of security news and events.

© 2024 Professional Security Magazine. All rights reserved.

Website by MSEC Marketing