Security Architecture and Design: The Big Picture

By Christopher Rees
Company security breaches are a daily news occurrence, and they affect companies of all sizes in every industry. This course will give you the essential foundation to design and architect a secure solution to protect a company’s data and assets.
Play course overview
Course info
Rating
(14)
Level
Beginner
Updated
Jun 13, 2018
Duration
4h 25m
Table of contents
Course Overview
Course Overview 2m
Setting the Stage
Setting the Stage - Who Should Watch This Course 3m Course Overview 2m Security Teams 2m Offensive and Defensive Teams 2m
Installing and Configuring Network Components
Module Intro 4m TCP/IP and OSI Models 2m Firewalls 6m Web Application Firewalls 2m Virtual Private Networks (VPN) 4m Transport Encryption 2m NIDS and NIPS 6m IDS/IPS Workflow 1m Four Approaches to IDS 2m Network Based IDS 2m Reacting to Alerts or Issues 3m Routers and Common Routing Protocols 3m Switches 2m Layer 2 vs. Layer 3 1m Load Balancers 1m Load Balancer Types 3m Web Security Gateways 2m Port Security and 802.1x 4m Loop Protection and Flood Guards 2m Spanning Tree Protocol (STP) 3m Access Points and WiFi Security 4m Security Information and Event Management (SIEM) 3m Data Loss Prevention (DLP) 2m Network Access Control (NAC) 3m Hardware Based Encryption 2m Mail Gateway 1m Additional Things to Consider 2m
Implementing Secure Protocols
Module Intro 2m Networking Protocols 4m DNS SEC 4m SSH 1m S/MIME 1m SRTP 1m LDAPS 1m FTPS and SFTP 2m SNMPv3 1m SSL/TLS 1m HTTPS 2m Secure POP/IMAP 3m Use Cases 5m
Implementing Secure Network Architecture
Module Intro and Topology Overview 4m Additional Topology Concepts 2m Security, Segmentation, and Isolation 3m Virtualization 1m Air Gaps 2m VPN 1m Security Device Placement 2m Software Defined Networking (SDN) 3m
Troubleshooting Common Security Issues
Module Intro 3m Unencrypted Credentials 2m Logs and Event Anomalies 2m Access Violations 2m Certificate Issues and Hierarchy 3m Misconfigured Devices 1m Weak Security Configuration 1m Personnel Issues 5m Unauthorized Software 2m Baseline Deviation and License Compliance 6m Asset Management 1m Authentication Issues 2m
Implementing Secure Systems Design
Module intro and Secure Boot 3m Measured Launch 1m Integrity Measurement Architecture (IMA) 1m BIOS/UEFI 1m Data Encryption / Hardware Based Encryption 8m Types of Data to Secure 1m Supply Chain Security 2m Hardware Root of Trust 1m EMI/EMP 1m Trusted OS 3m Secure Systems Design 3m Mobile Device Management 7m Peripherals Security 3m
Secure Application Development and Deployment
Module Intro 2m Development Life-cycle Models 1m Waterfall Development Model 2m Secure DevOps 1m Security Automation 3m Continuous Integration 2m Baselining and CI/CD 1m Immutable Systems 1m Infrastructure as Code 1m General Change Management 2m Provisioning, Deprovisioning and Asset Disposal 2m SDLC 2m Secure Coding Techniques 6m Code Quality and Testing 3m Static Code Analysis 2m Fuzzing 4m Secure Coding Concepts 2m Compiled vs. Runtime Code 2m
Physical Security Controls
Module Intro 2m Proper Lighting and Signage 2m Fencing 2m Guards 1m Alarms 2m Securing Physical Asssets 1m Protected Distribution Systems (PDS) 4m Airgap Networks 2m Hardware Locks 1m Mantraps 1m EMI Shielding 3m Proximity Readers 1m Biometrics 1m Barricades 1m HVAC 2m Hot and Cold Aisles 3m Fire Suppression 3m Screen Filters 1m Cameras and Video Surveillance 2m Motion Detection and Infrared 1m Logs 1m Key Management 2m
Description
Course info
Rating
(14)
Level
Beginner
Updated
Jun 13, 2018
Duration
4h 25m
Description

Every day we hear of another company that's been hacked many with millions of user records stolen, leaked to the dark web, or sold to the highest bidder. Understanding what makes an effective security posture is essential to combating this ever-changing threat. In this course, Security Architecture and Design: The Big Picture, you'll learn the essential foundations of what makes an effective information security program along with what infrastructure and applications are required. First, you'll learn about installing and configuring network components, then you'll learn about secure protocols. Next, you'll explore implementing secure network architecture and troubleshooting common security issues. Finally, you'll discover secure systems design, application development and deployment, and physical security controls. When you're finished this course, you'll have a good understanding of the various pieces that make up a solid security posture. Not only will you understand all major components of information security, but also how they fit together, and how to architect them according to best practices, to protect a company's data and digital assets.

About the author
Christopher Rees
About the author

Chris is a lifelong learner and professional information technologist, trainer and IT Manager. Married with 3 children, Chris is interested in martial arts, working out, spending time with family and friends and being creative whenever possible.

More from the author
Introduction to Threat Intelligence
Beginner
1h 10m
Oct 8, 2019
Cryptography and PKI for CompTIA Security+
Beginner
1h 54m
Apr 16, 2019
Designing, Implementing, and Maintaining a Disaster Recovery Plan
Beginner
2h 0m
Mar 13, 2019
More courses by Christopher Rees
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey, everyone. My name is Christopher Rees and welcome to my course, Security Architecture and Design: The Big Picture. I'm a former law enforcement officer and detective who specialized in computer crimes and I've been in enterprise ops for 20+ years, leading teams of various sizes from medium-sized companies to Fortune 500 enterprises. I've been creating training since 2000 and I've had the privilege of instructing over 150, 000 students around the world. Practically every day we hear of some company that's had their networks breached and confidential data stolen. This often equates to user data, credentials, credit card information, email addresses, and so forth. These breaches are incredibly damaging to a company's reputation, user and investor confidence, and ultimately to their bottom line. So in this course we're going to cover the essentials of what you'll need to understand when it comes to properly planning, implementing, troubleshooting, and maintaining a company's information security posture. I want to make sure you have a good understanding of all these areas that you'll need to assess when fortifying a company's defenses. Some of the major topics that we'll cover will include installing and configuring network components. We'll talk about implementing secure protocols and some use cases associated with those protocols. We'll also talk about secure network architecture and discuss segmentation, isolation, virtualization, and also where to place various security devices within the network as well as software-defined networking or SDN. We'll also cover troubleshooting common security issues, implementing secure systems design, secure application development and deployment, and lastly, physical security controls. So by the end of this course you have a good understanding of the major components that make up a secure network and the essentials of what it takes to ensure a company's confidential information is protected. Before beginning this course you should be familiar with general computing and networking fundamentals. Once you finish here you should feel comfortable diving into more advanced security training with courses on Security+ or Advanced Security Practitioner, Big Picture courses like malware analysis or similar topics and web security and related topics. So I hope you will join me on this journey to learn how to protect a company's data, intellectual property and reputation with Security Architecture and Design: The Big Picture course here at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT