Certified Network Defense Course Description

Certified Network Defender (CND) by EC-Council strengthens the fundamentals of network security. It provides an in-depth understanding of network security issues and trains network defenders on dealing with them.
CND v2 is the first course in the new Vulnerability Assessment and Penetration Testing (VAPT) Track developed by EC-Council. EC-Council has added and removed domains to focus on a comprehensive approach to deal with current network security issues in the latest version. The course authenticates your understanding of critical and core concepts of network and information security.

1. CND v2 training helps you to excel your role at the workplace, if you are:
2. Network administrator
3. Network security professional
4. Security professional or auditor
5. Site administrator
6. Any individual working towards the enterprise and network infrastructure security

1. To gain Certified Network Defense credentials, you need to take and pass the CND certification exam.
2. Certification Name    312-38 (ECC EXAM)
3. Test Format    Multiple Choice
4. Number of Questions    100
5. Test Delivery    ECC EXAM
6. Test Duration    4 hours
7. Passing Score    EC council provides exam in the form of various question banks with different difficulty levels. Passing scores can range from 60% to 85%, depending on which form is challenged.

1. The courseware of CNDv2 is designed to develop a strong and deep understanding of various networking verticals, talking first about various network and defense strategies proceeding to incident detection and response and advancing to threat assessments and intelligence. Below is the list of modules with a brief description of what they talk about.
2. Module 01: Network Attacks and Defense Strategies: This module introduces you to different network-based attacks faced by the organization to understand their working and develop defense strategies.
3. Module 02: Administrative Network Security: It involves developing or updating security infrastructure and continuously monitoring networks for any suspicious actions or unauthorized access
4. Module 03: Technical Network Security: Implementing authentication and protection controls for user verification to avoid theft of sensitive information or data. Introducing the concept of zero trust and its effectiveness in maintaining a better security posture
5. Module 04: Network Perimeter Security: Implementation and management of perimeter devices like firewalls, Intrusion Detection Systems, Intrusion Prevention Systems
6. Module 05: Endpoint Security-Windows Systems: Security of end-user devices and entry points by implying endpoint security on Windows devices.
7. Module 06: Endpoint Security-Linux Systems: Securing entry points or end-user devices by ensuring endpoint security on Linux devices
8. Module 07: Endpoint Security- Mobile Devices: Securing entry points or end-user devices by ensuring endpoint security on mobile devices
9. Module 08: Endpoint Security-IoT Devices: Fundamentals of IoT, IoT threats and security using endpoint security implementation
10. Module 09: Administrative Application Security: Understanding the methodologies of administrative application security and its importance to minimize the security-related vulnerabilities in the application
11. Module 10: Data Security: Implementing policies to safeguard data from unauthorized access using various techniques like encryption, hashing, tokenization, and other key management practices.  Concept of data storage, data classification, data masking, retention and destruction
12. Module 11: Enterprise Virtual Network Security: In-depth understanding of virtualization, related threats, and security. Essentials of software-defined network (SDN) security, network function virtualization (NFV) security
13. Module 12: Enterprise Cloud Network Security: Introduction to cloud computing,  threats, challenges and security across cloud platforms, concepts of container security, docker security, and Kubernetes security
14. Module 13: Enterprise Wireless Network Security: Understanding of wireless network security essentials, threats, attacks, and countermeasures.
15. Module 14: Network Traffic Monitoring and Analysis: Analysis and monitoring of logs from various perimeter network devices to identify any anomalies in the traffic.
16. Module 15: Network Logs Monitoring and Analysis: Analyzing the events generated by various devices in the network to identify signs of any suspicious activity or a potential incident
17. Module 16: Incident Response and Forensic Investigations: Understanding of incident management response process and methodologies to be followed in case of security incidents. Understanding of forensics investigation techniques and tools used for analysis.
18. Module 17: Business Continuity and Disaster Recovery: Understanding the importance of BCP and DR, related concepts and procedures required to allow smooth functioning of operations in case of a disaster
19. Module 18: Risk Anticipation with Risk Management: Risk management process, analyzing various risks that the organization is susceptible to and developing policies to manage them.
20. Module 19: Threat Assessment with Attack Surface Analysis: Analyzing the threats and attack vectors to develop solutions for their countermeasures
21. Module 20: Threat Prediction with Cyber Threat Intelligence: Developing a proactive approach by understanding various frameworks aiding in threat intelligence to anticipate the kinds of attacks hackers could use to gain access to the network.