Home Navigation

Recent Events Recent Events
Upcoming Courses Upcoming Courses

Contact Information

TELEPHONE:

Sales & Technical Support
(800) 852-0300

EMAIL:

info@forensics-intl.com
Technical Support:
support@forensics-intl.com

About NTI


Data Risk Course

Syllabus


Data Risk Course - Day 1:

  • Overview of Data Risk and the impact to legislative mandates of Security Assurance.
  • Overview of the key Components of Gramm-Leach-Bliley Act, HIPAA, and Sarbanes Oxley that cover Data Risk
  • Discussion of Sarbanes Oxley section 404 on internal controls and PCAOB audit standards.
  • Lecture on how Data Risk "Best Practices."
  • Discussion of the COSO control framework and Sarbanes Oxley audits.
  • Implementation of COBIT and ISO-17799.
  • Lecture on how Data Risk identification and mitigation.

  • Lecture on security vulnerabilities associated with current computer technology. Emphasis is placed on risks associated with notebook computers and portable computer storage devices.
  • Lecture on data hiding associated with the so-called partition gaps, sector gaps, landing zones and other hard disk storage areas.
  • Lecture and demonstration on Windows swap/page files and related data hiding techniques involving data diffusion techniques, etc.
  • Hands-on practice by participants in computer security reviews, secure data destruction and validation of data destruction processes.
  • Demonstration of various data hiding methods associated with personal computers.
  • Hands-on practice by participants in using various data hiding methods and software tools.
  • Review of issues covered in the class during the day of training.

Data Hiding Course - Day 2:

  • Lecture on steganography and encryption used in data hiding.
  • Discussion and suggestions for the detection or destruction of steganographic content and software.
  • Demonstration of hiding data in standard word processing and sound files using no special software tools.
  • Lecture on the keyboard capture of computer key strokes using software, electronic storage devices and radio transmissions.
  • Lecture and demonstration of pager intercepts. This information is vital to the security of many computer systems and to the protection of confidential business activities.

  • Lecture and a detailed explanation of an economical method of accomplishing a wireless remote capture of computer screen images.
  • Lecture and demonstration of file encryption breaking using NTI's Advanced Password Recovery Software. This session also covers special techniques used when non-latin based languages are used, e.g., Farsi, Chinese, Korean, etc.
  • Review and closing remarks.
  • Distribution of software to participants.

updated 9/3/2005