Summary

ISACA of North Texas – 2019 Summer Seminar
Course: Auditing Unix/Linux
Instructor: Tanya Baccam
 
Instructor Bio
Tanya Baccam, has extensive experience performing audits and assessments including application reviews, system audits, vulnerability and penetration tests, as well as providing training around application and software development risks.  She is skilled in reviewing the security architecture for clients including assessing firewalls, applications, web sites, network infrastructure, operating systems, routers, and databases.  She has conducted multiple network penetration engagements, vulnerability assessments and risk assessments using an arsenal of tools including commercially available and open-source tools. She has developed and reviewed policies and procedures, as well as developing and provided security awareness training. Tanya has been responsible for conducting, scheduling and managing numerous security assessment engagements. Additionally, she has provided advice and guidance to multiple companies on how to build successful auditing practices.

During her career in Information Technology, Tanya has become an expert in network and application security services. She has functioned in management, training and consulting roles.  She has vast experience including support of Novell, UNIX, Windows, and Oracle platforms.  Tanya is a Senior Certified Instructor and courseware author for SANS (SysAdmin, Audit, Network, Security) where she has developed and delivered training in security auditing, incident handling, hacker exploits, database security and perimeter protection, as well as being an authorized grader for some of the GIAC certifications.  She is also as a member of ISACA (Information Systems Audit and Control Association).

Key Professional Certifications 
Certified Public Accountant (CPA) 
Certified Information Systems Security Professional (CISSP) 
Certified Information Systems Auditor (CISA) 
Certified Information Security Manager (CISM) 
Certified Information Technology Professional (CITP)
GIAC Certified Advanced Incident Handling Analyst (GCIH) 
GIAC Certified Perimeter Protection Analyst (GPPA)
GIAC Security Essentials Certification (GSEC)
Oracle Certified Database Administrator (Oracle Certified DBA)


Auditing Unix/Linux
North Texas ISACA Chapter
 July 16-17, 2019 


 I. Basics
 • UNIX variants
 • Common UNIX Commands
 • Banners
 • Resources
 • File system layout
 • Hidden files
 • Shells
 • Environment variables

II. Users and groups
 • Permissions
 • umask/SUID/SGID
 • /etc/passwd
 • Users
 • Common accounts
 • Controlling root access
 • /etc/group
 • Common groups

III. Passwords
 • /etc/shadow
 • Password settings
 • PAM
 • Password cracking

IV. Patching
 • Solutions
 • Research

V. Ports and services
 • Specific services
 • PAM
 • Starting services
 • xinetd and inetd
 • Startup scripts
 • TCP Wrappers and firewalls
 • Run levels
 • Querying for services
 • Cleartext protocols
 • Cron
 • Auditor Tips

VI. Auditing and logging
 • Typical UNIX logs
 • Syslog
 • Integrity Checking
 • Auditor Tips

VII. Tools for Auditors
 • Intro to scripting


Required Materials:

Laptop Required
Students are required to have a laptop in order to complete the hands-on exercises. The laptop should meet the following specifications for the student to get the most from the exercises:
     • USB Port
     • 8 GB RAM or higher
     • 25 GB available hard drive space
     • Windows 7 professional or later (Home or similar editions will not have some of the features needed.)
     • Administrator privileges including the capability to install and run tools, as well as disable anti-virus
     • VMWare Player should be installed
 

Target Audience:

• Internal Auditors
• IT Specialist Auditors
• IT Auditors
• IT Audit Managers
• Information System Auditors
• Information Technology Auditors
• Information Security Officers  
 
Presentation Method: Group-Live      
Program Level:  Intermediate
Advance Preparation: None  
Recommended CPE Credits: 16
Date: July 16 and 17, 2019                                
Time: Tuesday and Wednesday 8:30 AM – 5:00 PM
Location: Weaver Dallas Offices - 2300 N. Field Street, Suite 800, Dallas, TX 75201
Cost for this 2 day course:
 
• ISACA North Texas Members: $600
• Non-Members: $650








Details

  • When

  • Tuesday, July 16, 2019 - Wednesday, July 17, 2019
    8:30 AM - 5:00 PM
    Central Time

  • Where

  • Weaver Dallas Office
    2300 N Field Street
    Suite 800
    Dallas, Texas 75201
    USA

Additional Information

NASBA Logo ISACA – North Texas Chapter is registered with the National Association of State Boards of  Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.learningmarket.org.

We have registered with the Texas State Board of Public Accountancy as a CPE sponsor. This registration does not constitute an endorsement by the Board as to the quality of our CPE programs.

For information regarding refund, complaint, and program cancellation policies, please visit our website at:
www.isaca-northtexas.org/SitePages/ProgramPolicies.aspx.   © 2016 North Texas Chapter ISACA, All rights reserved

Outlook Outlook
iCal iCal
Google Google
Yahoo! Yahoo!
MSN MSN
Top