TWO-DAY WORKSHOP
October 29-30, 2003

With increased connectivity to the Internet, organizations can no longer simply rely on operating system security to protect their valuable corporate data. Firewalls have emerged as the primary tools used to prevent unauthorized access. Firewalls are placed at the logical borders of an enterprise and aim to prevent unauthorized access to or from the private network. Considering how important these protection mechanisms are, organizations need to ensure not only that they are strategically placed, but also that they are configured in a secure manner. This seminar will give participants the knowledge necessary to understand and effectively evaluate the configuration of a firewall. The industry's leading firewall (Checkpoint) will be discussed in depth and case studies will reinforce important concepts learned. This seminar will help participants understand the various firewall technologies and give them the tools needed to effectively audit them.

Audience:

This seminar is targeted towards mid to senior level auditors, system administrators, Information Technology personnel, and all other security professionals tasked with securing the borders of their enterprises. As a seminar prerequisite, you’ll need an understanding of basic networking concepts and technologies.

Outline:

•  Network Security Basics

•  TCP/IP Internetworking

•  Firewall Topologies & Architectures

•  Hardening the Host

•  Firewall Filtering

•  Firewall Administration & Management

•  Network Security Monitoring

•  Logging & Monitoring

•  NAT & VPN

•  CERT/CC Evaluative Criteria

•  Auditing Checkpoint Firewall-1

•  Case Study: Checkpoint Firewall-1

Seminar Duration:

2 days (14 CPEs)

Venue:

Bank of New York

101 Barclay Street

New York, NY

• NO WALK-INS PERMITTED
• PLEASE BRING A PHOTO ID

Speaker:

Cereda Amos, CISA, CFSA is a Senior Security Consultant with SecureIT Consulting Group, a leading provider of IT Audit consulting and training services. Since joining SecureIT, Cereda has delivered numerous IT Audit seminars to a variety of customers, including multiple ISACA and IIA Chapters around the country. Prior to joining SecureIT Consulting, Cereda was an Information Security Specialist at the Federal Home Loan Mortgage Corporation (Freddie Mac). In that role, she was the Security Liaison to the network area, and worked with Network Engineers in defining baseline configuration standards for routers, firewalls, and other network devices.  She also assisted a team in defining network security metrics to help continually assess security risk as it related to external connectivity. Before accepting the promotion to Information Security Specialist at Freddie Mac, Cereda worked in their Internal IT Audit department where she was responsible for assessing, designing, and implementing security controls over a wide array of platforms, technologies, and processes. Prior to joining Freddie Mac, Ms. Amos was an integral part of the Federal Reserve Bank System's Center for Auditor Development, where she developed and delivered training in the areas of IT Audit and IT Security.

For questions, please contact:

Gonzalo Cuatrecasa at gonzalo.cuatrecasas@isacany.org (212-310-3416)

or Patrick Grant at pgrant@bankofny.com (212-635-7473)