2787 Designing Security for Microsoft SQL Server 2005
Infero Training Ltd
Summary
- Tutor is available to students
Location & dates
New Street Station Forecourt
BIRMINGHAM
West Midlands
B24ND
United Kingdom
Friary
BRISTOL
Avon
BS16EA
United Kingdom
Judd Street
CENTRAL LONDON
LONDON
WC1H9NT
United Kingdom
Parkside
COVENTRY
West Midlands
CV12HG
United Kingdom
Overview
Module 1: Introduction to Designing SQL Server Security
• Principles of Database Security
• Methodology for Designing a SQL Server Security Policy
• Monitoring SQL Server Security
Module 2: Designing a SQL Server Systems Infrastructure Security Policy
• Integrating with Enterprise Authentication Systems
• Developing Windows Server-Level Security Policies
• Developing a Secure Communication Policy
• Defining SQL Server Security Monitoring Standards
Lab : Designing a SQL Server Systems Infrastructure Security Policy
• Developing Microsoft Windows Server-Level Security Policies
• Developing a Secure Communication Policy
• Integrating SQL Server Security Within the Active Directory Environment
• Integrating SQL Server Security With Firewall Configurations
• Discussing Systems Infrastructure Security Integration
Lab : Creating an Infrastructure Security Inventory
• Auditing the SQL Server Logins
• Auditing the Windows Local Password Policy
• Auditing SQL Server Service Accounts
• Monitoring Security at the Enterprise and Server Levels
Module 3: Designing Security Policies for Instances and Databases
• Designing an Instance-Level Security Policy
• Designing a Database-Level Security Policy
• Designing an Object-Level Security Policy
• Defining Security Monitoring Standards for Instances and Databases
Lab : Designing Security Policies for Instances and Databases
• Designing an Instance-Level Security Policy
• Designing a Database-Level Security Policy
• Designing an Object-Level Security Policy
• Discussing Database Security Exceptions
Lab : Validating Security Policies for Instances and Databases
• Auditing Existing Server Logins
• Auditing SQL Server Roles Membership
• Analyzing Existing Object Permissions
• Monitoring Security at the Instance and Database Level
Module 4: Integrating Data Encryption into a Database Security Design
• Securing Data by Using Encryption and Certificates
• Designing Data Encryption Policies
• Determining a Key Storage Method
Lab : Integrating Data Encryption into a Database Security Design
• Selecting a Data Security Method
• Designing a Data Encryption Security Policy
• Selecting a Key Storage Method
Module 5: Designing a Security Exceptions Policy
• Analyzing Business and Regulatory Requirements
• Determining the Exceptions and their Impact
Lab : Designing a Security Exceptions Policy
• Identifying Variations from the Security Policy
• Obtaining Approval of the Security Policy
• Discussing the Results of Policy Approval Presentations
Module 6: Designing a Response Strategy for Threats and Attacks
• Designing a Response Policy for Virus and Worm Attacks
• Designing a Response Policy for Denial-of-Service Attacks
• Designing a Response Policy for Internal and SQL Injection Attacks
Lab : Designing a Response Strategy for Threats and Attacks
• Designing a Response Policy for Virus and Worm Attacks
• Designing a Response Policy for Denial-of-Service Attacks
• Designing a Response Policy for Internal Attacks
• Validating a Security Policy
Description
This two-day instructor-led course enables database administrators who work with enterprise environments to design security for database systems using Microsoft SQL ServerT 2005. The course emphasizes that students should think about the whole environment, which includes business needs, regulatory requirements, network systems, and database considerations during design. Students will also learn how to monitor security and respond to threats
Who is this course for?
This course is intended for current professional database administrators who have three or more years of on-the-job experience administering SQL Server database solutions in an enterprise environment.
Requirements
• Have basic knowledge of security protocols and how they work. For example, Windows NT LAN Manager (NTLM) or Kerberos.
• Have basic knowledge of public key infrastructure (PKI) systems. For example, how public and private keys work, strengths and weaknesses, and what they are used for.
• Have working knowledge of network architectures and technologies. For example, how a firewall works, how IPSec works in a networking context, and common vulnerability points.
• Have working knowledge of Active Directory directory service. For example, security models, policies, group policy objects (GPOs), and organizational units (OUs).
Questions and answers
Currently there are no Q&As for this course. Be the first to ask a question.
Reviews
Currently there are no reviews for this course. Be the first to leave a review.
Legal information
This course is advertised on reed.co.uk by the Course Provider, whose terms and conditions apply. Purchases are made directly from the Course Provider, and as such, content and materials are supplied by the Course Provider directly. Reed is acting as agent and not reseller in relation to this course. Reed's only responsibility is to facilitate your payment for the course. It is your responsibility to review and agree to the Course Provider's terms and conditions and satisfy yourself as to the suitability of the course you intend to purchase. Reed will not have any responsibility for the content of the course and/or associated materials.