Designing Security for Microsoft Networks vB

This course is intended for IT systems engineers and security specialists who are responsible for establishing security policies and procedures for an organization. Students should have one to three years of experience designing related business solutions.

After completing this course, students will be able to:

• Plan a framework for network security.
• Identify threats to network security.
• Analyze security risks.
• Design security for physical resources.
• Design security for computers.
• Design security for accounts and services.
• Design security for authentication.
• Design security for data.
• Design security for data transmission.
• Design security for network perimeters.
• Design an incident response procedure.

In addition, this course contains three teachable appendices that cover:

• Designing an acceptable use policy.
• Designing policies for managing networks.
• Designing an operations framework for managing security.

Module 1: Introduction to Designing Security
This module describes the basic framework for designing network security and introduces key concepts used throughout the course. It also introduces a fictional organization which the labs in the course use as an ongoing case study.

• Introduction to Designing Security for Microsoft Networks
• Contoso Pharmaceuticals: A Case Study

Module 2: Creating a Plan for Network Security
Plans for network security include documented security policies and procedures. These policies and procedures, when implemented, help to secure networks against compromises. This module describes the importance of security policies and procedures in a security design, and explains how a security design team must include representation from various members of the organization. The module also introduces the Microsoft Solutions Framework (MSF) process model, which provides a comprehensive framework that can be used to create a security design.

• Introduction to Security Policies
• Designing Security by Using a Framework
• Creating a Security Design Team

Module 3: Identifying Threats to Network Security
In this module, you will learn how to identify possible threats to a network and understand common motivations of attackers. The module introduces the STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privilege) threat model as an effective way to predict where threats may occur in an organization.

• Introduction to Security Threats
• Predicting Threats to Security

Module 4: Analyzing Security Risks
In this module, you will learn how to determine what resources in your organization require protection and how to prioritize those resources based on their value. You will then develop a risk management plan, based on the MOF risk model, to identify and analyze risks proactively and to determine an appropriate level of protection for each resource.

• Introduction to Risk Management
• Creating a Risk Management Plan

Module 5: Designing Physical Security for Network Resources
In this module, you will determine threats and analyze physical risks to resources in an organization. You will then learn how to design security for facilities, computers, mobile devices, and hardware. You will also learn about implementing disaster recovery as a way to protect physical resources. This module focuses on physical access to resources and how to protect them. Other modules will focus on access to data and how to protect it.

• Creating a Plan for Physical Security
• Creating a Design for Physical Security of Network Resources

Module 6: Designing Security for Network Hosts
In this module, you will learn how to determine threats and analyze risks to network hosts in an organization. You will also learn how to design security for network hosts throughout their life cycles, from initial purchase to decommissioning.

• Creating a Security Plan for Network Hosts
• Creating a Design for the Security of Network Hosts

Module 7: Designing Security for Accounts and Services
In this module, you will learn how to determine threats and analyze risks to accounts and services in an organization. You will also learn how to design security for accounts and services, including determining security requirements, creating policies, and designing strategies to manage security.

• Creating a Security Plan for Accounts
• Creating a Security Plan for Services
• Creating a Design for Security of Accounts and Services

Module 8: Designing Security for Authentication
In this module, you will learn how to determine threats and analyze risks to authentication. You will learn how to design security for authenticating local users, remote users, and users who access your network across the Internet. You will also learn when to choose multifactor authentication for additional security.

• Creating a Security Plan for Authentication
• Creating a Design for Security of Authentication

Module 9: Designing Security for Data
In this module, you will learn how to determine threats and analyze risks to data in an organization. You will learn how to design an access control model for files and folders in order to protect data that is stored on network servers. You will also learn about considerations for encrypting and managing data.

• Creating a Security Plan for Data
• Creating a Design for Security of Data

Module 10: Designing Security for Data Transmission
In this module, you will learn how to determine threats and analyze risks to data transmission in an organization. You will also learn how to design security for various types of data transmission, including traffic on local area networks (LANs), wide area networks (WANs), Virtual Private Networks (VPNs), wireless networks, and the Internet.

• Creating a Security Plan for Data Transmission
• Creating a Design for Security of Data Transmission

Module 11: Designing Security for Network Perimeters
In this module, you will learn how to determine threats and analyze risks to network perimeters. You will also learn how to design security for network perimeters, including perimeter networks (also known as DMZs, demilitarized zones, and screened subnets), and for computers that connect directly to the Internet.

• Creating a Security Plan for the Perimeter of a Network
• Creating a Design for Security of Network Perimeters

Module 12: Responding to Security Incidents
Network security for an organization is an exercise in prevention. A good security design that is properly implemented will prevent most of the most common attacks. However, it is very likely that an attacker will eventually penetrate the defenses that you design.

When an attack happens, the key to limiting damage is early detection and a rapid and orderly response. Auditing is an important tool to help you to detect network abnormalities that may indicate attacks. An incident response procedure is a series of steps that you design in advance to guide your organization during a security incident.

• Introduction to Auditing and Incident Response
• Designing an Audit Policy
• Designing and Incident Response Procedure

Module 13: Appendix A: Designing an Acceptable Use Policy
This appendix provides information about creating policies for acceptable use of network resources by users.

• Analyzing Risks That Users Introduce
• Designing Security for Computer Use

Module 14: Appendix B: Designing Policies for Managing Networks
This appendix offers guidelines for ensuring that network administrators manage networks in a secure manner.

• Analyzing Risks to Managing Networks
• Designing Security for Managing Networks

Module 15: Appendix C: Designing an Operations Framework to Manage Security
This appendix explains how to create a framework to ensure security of a network as the network changes and as the security requirements of the organization change.

• Analyzing Risks to Ongoing Network Operations
• Designing a Framework for Ongoing Network Operations