CSXP: CSX Practitioner Boot Camp
The CSX Practitioner (CSXP) Boot Camp is a 5-day, immersive cyber security training course designed to help you build critical technical skills by learning complex concepts and practice applying industry-leading methods. This ISACA authorized CSXP Boot Camp is conducted in a live, lab-based network environment – not a simulated environment like other courses. Students will go through complex cyber security scenarios based on recent, real-world scenarios and be given live incidents to detect and mitigate. Aligned with global cyber security frameworks.
This Boot Camp consists of at least 50% hands-on lab exercise, combined with instruction on key cyber security concepts. Each day of training represents a new lesson, focused on skills and concepts in one of five areas: (1) Identify, (2) Protect, (3) Detect, (4) Respond and (5) Recover. Each lesson covered in the course is matched with practice labs and tools, and attendees will receive a 6-month subscription to the virtual cyber lab environment where they can continue practicing and building technical skills.
What Comes With Registration?
- Five Days of Official ISACA Training from an Authorized CSX Practitioner Instructor
- Official CSX Practitioner Courseware
- Official CSX Practitioner Study Guide
- 6-Month Subscription to ISACA’s Corresponding Labs
- CSX Practitioner Exam Voucher
CSXP Boot Camp Prerequisites
This official ISACA training seminar has no prerequisites and the scheduled dates below are open for registration.
NOTE: While this training program does not have any prerequisites, the CSX Practitioner certification does. Additional information on these prerequisites can be found below:
CSX Practitioner Boot Camp is intended for Professionals established in the cyber security field – with a minimum of one to five years of experience. Additionally, you should already be able to demonstrate proficiency in the following areas: (1) Network Scanning, (2) Specialized Port Scans, (3) Network Topologies, (4) Network Log Analysis, (5) Centralized Monitoring, (6) Hotfix Distribution, (7) Vulnerability Scanning, and (8) Traffic Monitoring.
Domain 1: Identify
Identify is the first domain covered in this official CSX Practitioner (CSXP) Boot Camp. In it, students will learn about the identification, assessment and evaluation of assets, threats and vulnerabilities in both internal and external networks.
- Hardware Software Identification and Documentation
- Network Discovery Tools
- Sensitive Information Discovery
- Vulnerability Assessment Process
- Patch Upgrade Configure Vulnerability Scanners
Labs and Exercises
- Preliminary Scanning
- Additional Scanning Options
- Sensitive Information Identification
- Vulnerability Scanner Set-up and Configuration
- Vulnerability Scanner Set-up and Configuration, Part 2
Domain 2: Protect
Protect is the second domain students focus on in the CSXP training program. It reviews the implementation of cyber security controls to protect a system from identified threats.
- Specific Cyber Controls
- Collecting Event Data
- Verifying the Effectiveness of Controls
- Monitoring Controls
- Updating Cyber Security Controls
- Patch Management
- Verifying Identities and Credentials
- Cyber Security Procedures Standards
Labs & Exercises:
- System Hardening
- Firewall Setup and Configuration
- Microsoft Baseline Security Analyzer
- IDS Setup
- Personal Security Products
- Linux Users and Groups
Domain 3: Detect
The third section of this CSX Practitioner (CSXP) Boot Camp is Detection. In it, students review the detection of network and system incidents, events and compromise indicators, along with assessment of potential damage.
- Analyze Network Traffic Using Monitors
- Detect Malicious Activity AntiVirus
- Assess Available Event Information
- Baselines for Anomaly Detection
- Initial Attack Analysis
- Incident Escalation Reporting
- Change Implementation Escalation
Labs & Exercises:
- Using Snort and Wireshark to Analyze Traffic
- Detect the Introduction and Execution of Malicious Activity
- Analyze and Classify Malware
- Windows Event Log Manipulation via Windows Event Viewer
- Host Data Integrity Baselining
- Performing Network Packet Analysis
Domain 4: Respond
The fourth domain in the CSXP boot camp is Respond. The main agenda here is for students to review the execution of comprehensive incident response plans and mitigation of cyber incidents.
- Defined Response Plan Execution
- Network Isolation
- Disable User Accounts
- Blocking Traffic
- Incident Report
Labs & Exercises:
- Incident Detection and Identification
- Remove Trojan
- Block Incoming Traffic on Known Port
- Implement Single System Changes in Firewall
- Conduct Supplemental Monitoring
- Create Custom Snort Rules
Domain 5: Recover
Recover is the fifth and final domain students cover in this official CSXP Boot Camp. It focuses on the recovery from incidents and disasters, including post incident-response documentation and implementation of continuity plans.
- Industry Best Practices
- Disaster Recovery and BC Plans
- Cyber System Restoration
- Data Backup and Restoration Key Concepts
- Actualizing Data Backups and Recovery
- Implementing Patches and Updates
- Ensuring Data Integrity
- Post-Incident Review
Labs & Exercises:
- Comprehensive Lab Response
- Patches and Updates
- Data Backup and Recovery
- Recovering Data and Data Integrity Checks
- Post Incident Service Restoration
ISACA® is a trademark of the Information Systems Audit and Control Association, Inc. (ISACA), registered in the United States and other countries. www.isaca.org ISACA®, the CSX Cybersecurity Nexus™ Mark, and ISACA’s CSX Cybersecurity Nexus™ products, certifications, and services are not affiliated with CSX Corporation or its subsidiaries, including CSX Transportation, Inc.
|Sep 18 - 22, 2017||8:00am - 6:00pm EST||Ottawa, ON||USD $3,950.00|