Security Analist naar Security Architect- Deel 4 Security Architect

• Prior to performing any penetration testing, it is important to

• outline the Rules of Engagement with the client. Discover common
• elements found in a ROE such as the scope of the engagement,
• information handling, potential impacts, and liabilities. Explore
• how to draft templates and pre-defined checklists that can help
• ensure all responsibilities, rules, and directives are clearly
• communicated.

• To become a well-rounded ethical hacker you must have good

• ethics, love a challenge, and be persistent. In addition, you must
• have a strong technical background and be familiar with common
• tools, strategies, and techniques used in a variety of ethical
• hacking situations. Explore best practices related to ethical
• hacking and incident handling, legal considerations, and proactive
• hacking practices and strategies.

Discover the importance of automating the responses to security incidents. Examine how SIEM and SOAR are related, as well as how automation and orchestration differ. The role of playbooks and machine learning in security is also covered.

Discover the importance of integrating regulations with organizational security policies. Explore security standards such as GDPR, HIPAA, FISMA, as well as ISO and NIST security standards.

• Explore the data breach response plan as well as the regulatory

• requirements for notifying stakeholder and clients of a data
• security breach. Discover the regulatory notification requirements
• for the Digital Privacy Act, the General Data Protection Regulation
• (GDPR), the Health Insurance Portability and Accountability Act
• (HIPAA), and the Gramm Leach Bliley Act and the consequences for
• noncompliance.

Explore the importance of security incident triage in handling incidents in a timely and automated manner. Familiarize yourself with anomalies and activities that often require triage.

Discover the playbook approach to security including the security architect's approach to decision making in the era of Agile development. Also explore the challenges, benefits, and considerations to implementing a playbook approach.

• Practice Security Architect tasks such as implementing testing best practices, executing Ansible playbooks, automating upgrades with playbooks, and analyzing SSH activity. Then, test your skills by answering assessment questions after examining security data breach categories, applying NIST standards on encryption, working with ethical hacking tools and applying mitigation tools and techniques.
• This lab provides access to tools typically by Security Architects, including:
• � PowerShell 5.1
• � Nmap 7.60
• � OpenSSH 7.6p1
• � Nginx 1.14.0
• � Snort 2.9.7.0
• � Suricata 3.2
• � MySQL
• � Python 3.6.9
• � Python3-pip pip 9.0.1
• � Docker 18.09.7
• This lab is part of the Security Architect track of the Skillsoft Aspire Security Analyst to Security Architect journey.

• Final Exam: Security Architect will test your knowledge and

• application of the topics presented throughout the Security
• Architect track of the Skillsoft Aspire Security Analyst to
• Security Architect Journey. Learners seeking to test their
• knowledge and application of Security Architect skills and those
• seeking to complete the Security Architect track of the Skillsoft
• Aspire Security Analyst to Security Architect Journey.