www.roman.ch auf Deutsch   www.roman.ch - go to the english version
Search
 
Trainings / Courses
  Overview
  Open Courses
  Certification Courses
  Company Courses
  Individual Courses
Consulting / Engineering
  Information Security
  Check Point
  Networking
  VoIP
  Secure Web
  ITIL
  Special Services
Technology Portal
  Publications
  Security News
  Jobs
  Technology Partner
About us
  Company
  Addresses
  Map & Direction
  Training Center
  Events
  Contact
  General Conditions
OSSTMM Professional Security Analyst (OPSA)
Duration of course: 6 days
Price CHF: 5'333.00 dkdkdk
Price EUR: 4'426.00
Course dates:
      
This course is carried out upon request. The course dates, the type of course (e.g. workshop) and the location are arranged to suit your requirements. Please contact us for more information!
Subject/Goal:
Management Summary
The OPSA certification course participants are trained to be a responsible, capable and resourceful security analyst. Within the training course they acquire the analytical skills and security knowledge necessary for security and risk analysis and the business skills required for successful security team and project management. The OPSA Training course is based on the Open Source Security Testing Methodology Manual (OSSTMM), the most widely used, peer-reviewed, comprehensive security testing methodology in existence. The OSSTMM provides a complete, effective and practicable methodology on performing security testing. The OSSTMM strongly focuses on the business justification of IT Security investments and is designed to be tailored into single modules to suit the corporate business objectives and industry-specific regulations.

The course is carried out in cooperation with the company Dreamlab Technologies AG (www.dreamlab.ch).

Objective
The participants are prepared for the official OPSA certification exam accredited by the Institute for Security and
Open Methodologies (ISECOM) and the La Salle University in Barcelona.
Audience:

  • Security Auditors
  • Security Consultants

Content of course:

    Information Security Overview
  • Information Security Standards (BS7799 / ISO17799, SOX 404, Basel II, BSI)
  • Information Security Sections and Modules
  • What is the OSSTMM?
  • International Best Practices and Standards
  • OSSTMM Rules of Engagement
  • Security frameworks, policies and architecture
  • Security Analysis
  • How the OSSTMM works: Application of the OSSTMM modules
  • Strategies for risk assessments, system- and network survivability
  • Analysis of network diagrams for security weaknesses
  • Design of secure networks topographies with associated project controls
  • Analysis of test tool output (i.e. sing, nmap, iss). log files, protocol dumps
  • Document Grinding, Information Gathering
  • Privacy
  • Verification and validation of tests
  • Security Project Management
  • OSSTMM Testing projects
  • Calculating and executing project plans with proper legal and ethical testing
  • Assessment estimates
  • Professional client interaction
  • Cost controls, Return-on-Investment Management using the OSSTMM
  • Security project contracts
  • How to write test reports
  • How to use test results
  • Basics of Risk Management, Risk Assessment Values
  • Security Team Management
  • Review of the security consultant rules of engagement from pre-sales to reporting
  • Security team projects requirements
  • Efficient teamwork with internal Red Teams or consultancies
  • Red Team and CERT strategies
Requirements:
Profound experience in IT Security, solid basic knowledge of networks and TCP/IP as well as experience in command line under Linux and Windows is required.
2-3 weeks before the course starts the OPST course attendees receive the course handouts (OSSTMM Methodology, OPST Workbook, Tool guide, Link list) to read in.
Duration of course:
6 days
Additional information:
Course language:
The course language is usually german. If it is a common wish of participants, the course can be given in English or French (e.g. for company-internal courses.)

Documentation:
The participants receive a comprehensive documentation (official ISECOM courseware).

Agenda:
6 days
Monday to Friday 08.00-12.00, 13.30-18.00
Saturday official OPSA exam 09.00-13.00

Certification Exam:

Official ISECOM accredited “CERTIFIED OSSTMM PROFESSIONAL SECURITY ANALYST” exam. The exam consists of a 4 hour open book exam including hands-on skills assessment.
The OPSA certification has been accredited for the Master in Information Technology Security at La Salle - URL University, Barcelona of the international La Salle educational network which includes Manhattan College in New York and La Salle University in Philadelphia, Pennsylvania. All OPSA certificates carry both the ISECOM and La Salle logos and prestige.

Course form:
The course is carried out as a combination of presentation and workshop. The individual modules are initiated by an introductory presentation. They are then extended by a various "live" demonstrations / exercises.

Course fee:
The course fees include the documentation, as well as refreshment during intervals and lunch.

The course can also be carried out as an On-Site course on the premises of your company !
Further Information:
www.isecom.org

  
 
 
  © 1993-2024 ROMAN - Consulting & Engineering AG | Alle Rechte vorbehalten | Haftungsausschluss