SQL Server 2005 > MOC 2787: Designing Security for SQL Server 2005

MOC 2787: Designing Security for SQL Server 2005


MOC 2787: Designing Security for SQL Server 2005

PACKAGE INCLUDES

  • 6 CD-ROMs featuring live instructor-led classroom sessions with full audio, video and demonstration components
  • Printable courseware
  • Step-by-step hands-on-labs
  • Comprehensive, understandable, and reusable as reference material
  • Microsoft Authorized MeasureUp Exam Simulation
  • Focused on practical solutions to real-world development problems


    • Single User CD Course
    £ 298
    Single User Online Course
    £ 238
    Multi User CD Course
    £ 596

    COURSE INTRODUCTION

    Schedule our instructor led classroom training at your convenience and never miss another lecture or fall behind. You are in complete control. We invited the Best Microsoft-Certified Trainers in the industry to help us develop the ultimate training & certification program which includes everything you will need to succeed.

    This instructor-led course enables database administrators who work with enterprise environments to design security for database systems using Microsoft SQL Server 2005. The course emphasizes that students should think about the whole environment, which includes business needs, regulatory requirements, network systems, and database considerations during design. Students will also learn how to monitor security and respond to threats.

    Course Outline


    Module 1 - Introduction to Designing SQL Server Security

    Lesson 1: Principles of Database Security
    Principle of Least Privileges
    International Common Criteria for Information Technology Security
    C2 Compliance Requirements
    Lesson 2: Designing a SQL Server Security Policy
    Benefits of a Security Policy
    Lesson 3: Monitoring SQL Server Security
    Auditing Tools
    Monitoring Tools
    Module 1 - Review

    Module 2 - Designing a SQL Server Systems Infrastructure Security Policy

    Lesson 1: Integration with Enterprise Authentication Systems
    Determining the Appropriate Enterprise Authentication Method
    Server-Level Security with Active Directory
    Guidelines for Implementing a Server-Level Security Policy
    High-Availability Solutions Security
    Best Practices
    Lesson 2: Windows Server-Level Security Policies
    Determining Service Accounts Permissions
    Identifying Required Windows Services
    Interacting with Network Firewalls
    Planning the Physical Security of Servers
    Lesson 3: Secure Communication Policy
    Choosing Network Libraries
    Encryption Methods
    Choosing an Appropriate Encryption Method
    Securing Communication with Endpoints
    Lesson 4: SQL Server Security Monitoring Standards
    Determining What to Monitor
    Determining the Classification System for Alerts
    Determining the Notification Policy
    Lab 1 Introduction
    Module 2 - Review

    Module 3 - Designing Security Policies for Instances and Databases

    Lesson 1: Instance-Level Security Policy
    Determining Authentication Modes and Login Security
    Securing the SQL Server Agent Service
    Maintaining Updated Hotfixes or Service Packs
    Lesson 2: Database-Level Security Policy
    Database Schemas
    Designing Database Schemas
    Designing Database Users' Privileges
    Securing Database-Level DDL Events
    Lesson 3: Object-Level Security Policy
    Designing a Permission and Data Access Strategy
    Securing Module Execution
    Designing a Security Policy for CLR Objects
    Lesson 4: Security Monitoring Standards for Instances and Databases
    Determining What to Monitor
    Determining the Classification System for Alerts
    Determining the Notification Policy
    Lab 2 Introduction
    Module 3 - Review

    		 

    Module 4 - Integrating Data Encryption into a Database Security Design

    Lesson 1: Securing Data with Encryption and Certificates
    What are Certificates?
    Determining Data Security Methods
    Lesson 2: Data Encryption Policies
    Impact of Data Encryption
    Lesson 3: Key Storage Method
    Selecting a Key Storage Method
    Lab 3 Introduction
    Module 4 - Review

    Module 5 - Designing a Security Exceptions Policy

    Lesson 1: Business and Regulatory Requirements
    Gathering Business and Regulatory Requirements
    Determine Variations
    Lesson 2: Exceptions and Their Impact
    Determine Possible Exceptions
    Evaluating the Impact of Exceptions
    Lab 4 Introduction
    Module 5 - Review

    Module 6 - Designing a Response Strategy for Threats and Attacks

    Lesson 1: Designing a Response Policy for Virus and Worm Attacks
    Threats by Viruses and Worms
    Best Practices
    Responding to Virus and Worm Attacks
    Lesson 2: Response Policy for Denial of Service Attacks
    Symptoms
    Possible Responses to a Denial of Service Attack
    Lesson 3: Response Policy for Internal and SQL Injection Attacks
    Responding to Internal Attacks
    Reducing the Likelihood of SQL Injection Attacks
    Lab 5 Introduction
    Module 6 - Review Closure
    Page Execution time is 15.156 seconds.