tailieunhanh - Course 2830: Designing security for Microsoft networks - Module 1

Module 1: Introduction to designing security. This module describes the basic framework for designing network security and introduces key concepts used throughout the course. It also introduces a fictional organization which the labs in the course use as an ongoing case study. | Module 1: Introduction to Designing Security Overview Introduction to Designing Security for Microsoft Networks Contoso Pharmaceuticals: A Case Study Lesson: Introduction to Designing Security for Microsoft Networks Why Secure a Network? Important Principles of Security Security Design and Implementation Overview of a Microsoft Network Framework for Designing Security Why Secure a Network? External attacker A network security design protects assets from threats and vulnerabilities in an organized manner To design security, analyze risks to your assets and create responses Corporate Assets Internal attacker Incorrect permissions Virus Important Principles of Security Principle Definition Defense in depth Provide multiple layers of protection against threats at multiple points on a network Least privilege Grant the least amount of privileges required for a user or resource to perform a task Minimized attack surface Reduce vulnerable points in a network Security Design and Implementation Ensures that network security is proactive instead of reactive Contains policies and procedures Includes securing the operating system, data, accounts, perimeters, routers, connections, computers, mobile devices, facilities, users, and administrators Uses the design to create deployment plans Configures computers according to security policies and procedures Design Implementation Overview of a Microsoft Network Branch Office Corporate Headquarters Internet Microsoft network security includes: Physical security Computers Accounts Authentication LAN LAN Web Server Remote User Server Data Data transmission Network perimeters Wireless User Framework for Designing Security Modules Phase Tasks 2 Creating a design team Include diverse membership to ensure success and buyoff across organization 3 Performing threat modeling Predict attacks to assets List vulnerabilities of assets 4 Performing risk management Analyze risk and create risk statements Prioritize risk 5-11 Designing security | Module 1: Introduction to Designing Security Overview Introduction to Designing Security for Microsoft Networks Contoso Pharmaceuticals: A Case Study Lesson: Introduction to Designing Security for Microsoft Networks Why Secure a Network? Important Principles of Security Security Design and Implementation Overview of a Microsoft Network Framework for Designing Security Why Secure a Network? External attacker A network security design protects assets from threats and vulnerabilities in an organized manner To design security, analyze risks to your assets and create responses Corporate Assets Internal attacker Incorrect permissions Virus Important Principles of Security Principle Definition Defense in depth Provide multiple layers of protection against threats at multiple points on a network Least privilege Grant the least amount of privileges required for a user or resource to perform a task Minimized attack surface Reduce vulnerable points in a network Security Design and .