505 is a quite good course with a lot of information in Windows in the Enterprise. Your admin will have to have a pretty good knowledge on Windows/AD/IIS/PKI already to fully benefit from the course. It's a bit over a year now that i attended Jasons class so i'm not sure what the course contains nowadays. Back then it was still pretty Windows 2003 based with some newer content (like IIS 7) and the 'scripting day' was still VBScript, not Powershell. If might be worth shooting Jason a question if your guy is looking to secure Windows 2008 environment specifically.
Aside from SANS i didn't find any notably good Windows security training. Maybe the Foundstone one. If you are a Microsoft enterprise customer it might be worth asking your TAM if they have anything to offer on site. From: [email protected] [mailto:[email protected]] On Behalf Of Chris Merkel Sent: 24 February 2010 22:21 To: PaulDotCom Security Weekly Mailing List Subject: [Pauldotcom] Training Question - Securing Windows I have a Windows sysadmin who is interested in taking a class on defending Windows systems. Anyone taken the SANS 505 Class - Securing Windows? Opinions? He was looking at this class from Global Knowledge, but check out the course outline - WTF does most of this have to do with defense? It looks like they took the CEH and re-packaged it into something a sysadmin could get away with taking: http://www.globalknowledge.com/training/course.asp?pageid=9 <http://www.globalknowledge.com/training/course.asp?pageid=9&courseid=10836&; catid=191&country=United+States> &courseid=10836&catid=191&country=United+States Aside from SANS - are there any other (good) options? -- - Chris Merkel
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
