Security Architecture and Design: The Big Picture

By Christopher Rees
Company security breaches are a daily news occurrence, and they affect companies of all sizes in every industry. This course will give you the essential foundation to design and architect a secure solution to protect a company’s data and assets.
Play course overview
Course info
Rating
(19)
Level
Beginner
Updated
Jun 13, 2018
Duration
4h 24m
Table of contents
Course Overview
Course Overview 2m
Setting the Stage
Security Teams 2m Course Overview 2m Offensive and Defensive Teams 2m Setting the Stage - Who Should Watch This Course 3m
Installing and Configuring Network Components
IDS/IPS Workflow 1m Module Intro 4m Routers and Common Routing Protocols 3m Network Based IDS 2m NIDS and NIPS 6m Port Security and 802.1x 4m Spanning Tree Protocol (STP) 3m Load Balancers 1m Hardware Based Encryption 2m Switches 2m Reacting to Alerts or Issues 3m Load Balancer Types 3m TCP/IP and OSI Models 2m Network Access Control (NAC) 3m Firewalls 6m Virtual Private Networks (VPN) 4m Mail Gateway 1m Web Security Gateways 2m Access Points and WiFi Security 4m Loop Protection and Flood Guards 2m Data Loss Prevention (DLP) 2m Layer 2 vs. Layer 3 1m Web Application Firewalls 2m Additional Things to Consider 2m Four Approaches to IDS 2m Transport Encryption 2m Security Information and Event Management (SIEM) 3m
Implementing Secure Protocols
S/MIME 1m HTTPS 2m Use Cases 5m LDAPS 1m DNS SEC 4m SSH 1m Secure POP/IMAP 3m SNMPv3 1m FTPS and SFTP 2m SRTP 1m Networking Protocols 4m SSL/TLS 1m Module Intro 2m
Implementing Secure Network Architecture
VPN 1m Security, Segmentation, and Isolation 3m Air Gaps 2m Module Intro and Topology Overview 4m Security Device Placement 2m Additional Topology Concepts 2m Virtualization 1m Software Defined Networking (SDN) 3m
Troubleshooting Common Security Issues
Misconfigured Devices 1m Baseline Deviation and License Compliance 6m Unencrypted Credentials 2m Module Intro 3m Certificate Issues and Hierarchy 3m Logs and Event Anomalies 2m Asset Management 1m Weak Security Configuration 1m Access Violations 2m Unauthorized Software 2m Personnel Issues 5m Authentication Issues 2m
Implementing Secure Systems Design
EMI/EMP 1m Supply Chain Security 2m Measured Launch 1m Module intro and Secure Boot 3m Hardware Root of Trust 1m BIOS/UEFI 1m Data Encryption / Hardware Based Encryption 8m Peripherals Security 3m Secure Systems Design 3m Trusted OS 3m Types of Data to Secure 1m Integrity Measurement Architecture (IMA) 1m Mobile Device Management 7m
Secure Application Development and Deployment
Continuous Integration 2m Secure DevOps 1m Module Intro 2m Immutable Systems 1m Infrastructure as Code 1m Code Quality and Testing 3m SDLC 2m General Change Management 2m Static Code Analysis 2m Waterfall Development Model 2m Provisioning, Deprovisioning and Asset Disposal 2m Secure Coding Concepts 2m Security Automation 3m Secure Coding Techniques 6m Compiled vs. Runtime Code 2m Fuzzing 4m Development Life-cycle Models 1m Baselining and CI/CD 1m
Physical Security Controls
Cameras and Video Surveillance 2m Securing Physical Asssets 1m Module Intro 2m Alarms 2m HVAC 2m Biometrics 1m Key Management 2m Fire Suppression 3m EMI Shielding 3m Logs 1m Protected Distribution Systems (PDS) 4m Airgap Networks 2m Barricades 1m Motion Detection and Infrared 1m Guards 1m Proper Lighting and Signage 2m Mantraps 1m Fencing 2m Hot and Cold Aisles 3m Screen Filters 1m Hardware Locks 1m Proximity Readers 1m
Description
Course info
Rating
(19)
Level
Beginner
Updated
Jun 13, 2018
Duration
4h 24m
Description

Every day we hear of another company that's been hacked many with millions of user records stolen, leaked to the dark web, or sold to the highest bidder. Understanding what makes an effective security posture is essential to combating this ever-changing threat.

In this course, Security Architecture and Design: The Big Picture, you'll learn the essential foundations of what makes an effective information security program along with what infrastructure and applications are required. First, you'll learn about installing and configuring network components, then you'll learn about secure protocols. Next, you'll explore implementing secure network architecture and troubleshooting common security issues. Finally, you'll discover secure systems design, application development and deployment, and physical security controls.

When you're finished this course, you'll have a good understanding of the various pieces that make up a solid security posture. Not only will you understand all major components of information security, but also how they fit together, and how to architect them according to best practices, to protect a company's data and digital assets.

About the author
Christopher Rees
About the author

Chris is a lifelong learner and professional information technologist, trainer and IT Manager. Married with 3 children, Chris is interested in martial arts, working out, spending time with family and friends and being creative whenever possible.

More from the author
Security Management: A Case Study
Advanced
1h 7m
Jun 2, 2020
Law, Ethics, and Security Compliance Management
Intermediate
2h 8m
Mar 18, 2020
Security Leadership through Effective Communication
Advanced
1h 14m
Dec 24, 2019
More courses by Christopher Rees
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey, everyone. My name is Christopher Rees and welcome to my course, Security Architecture and Design: The Big Picture. I'm a former law enforcement officer and detective who specialized in computer crimes and I've been in enterprise ops for 20+ years, leading teams of various sizes from medium-sized companies to Fortune 500 enterprises. I've been creating training since 2000 and I've had the privilege of instructing over 150, 000 students around the world. Practically every day we hear of some company that's had their networks breached and confidential data stolen. This often equates to user data, credentials, credit card information, email addresses, and so forth. These breaches are incredibly damaging to a company's reputation, user and investor confidence, and ultimately to their bottom line. So in this course we're going to cover the essentials of what you'll need to understand when it comes to properly planning, implementing, troubleshooting, and maintaining a company's information security posture. I want to make sure you have a good understanding of all these areas that you'll need to assess when fortifying a company's defenses. Some of the major topics that we'll cover will include installing and configuring network components. We'll talk about implementing secure protocols and some use cases associated with those protocols. We'll also talk about secure network architecture and discuss segmentation, isolation, virtualization, and also where to place various security devices within the network as well as software-defined networking or SDN. We'll also cover troubleshooting common security issues, implementing secure systems design, secure application development and deployment, and lastly, physical security controls. So by the end of this course you have a good understanding of the major components that make up a secure network and the essentials of what it takes to ensure a company's confidential information is protected. Before beginning this course you should be familiar with general computing and networking fundamentals. Once you finish here you should feel comfortable diving into more advanced security training with courses on Security+ or Advanced Security Practitioner, Big Picture courses like malware analysis or similar topics and web security and related topics. So I hope you will join me on this journey to learn how to protect a company's data, intellectual property and reputation with Security Architecture and Design: The Big Picture course here at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT