I.       Overview:

Trend Micro Deep Security 12 Training for Certified Professionals is a three-day, instructor-led training course. articipants will learn how to use Trend Micro Deep Security for advanced hybrid-cloud security of physical, virtual and cloud-based servers. This course details the basic architecture of the Deep Security solution, deployment options, protection modules, policy configuration, and administration of the system. As part of the course, participants will install Deep Security Manager in a virtual lab environment, deploy Deep Security Agents on a variety of Windows Server platforms, as well as Deep Security Virtual Appliance. Best practices and troubleshooting details for successful implementation and long-term maintenance of the system are also discussed.

This course incorporates a variety of hands-on lab exercises allowing participants to put the lesson content into action.

This course is taught by Trend-Micro certified trainers. Upon completion of this course, participants may complete the certification examination to obtain designation as Trend Micro Certified Professional for Deep Security.

II.     Duration:  

03 days

III. Objectives:

What you’ll learn:

• Describe the purpose, features, functions, and capabilities of Trend Micro Deep Security 12
• Define and install components that make up Deep Security
• Implement security by enabling protection modules
• Describe available configuration and administration options
• Attempt the Trend Micro Certified Professional for Deep Security Certification Exam

IV. Intended Audience:

This course is designed for IT professionals who are responsible for protecting users, networks, data centers, and cloud resources from data breaches and targeted attacks.

This includes those responsible for:

• Operations
• Deployment
• Security Response
• Compliance
• Support

V.    Prerequisites:

There are no prerequisites to attend this course, however, a working knowledge of Trend Micro products and services, as well as an understanding of basic networking concepts and principles will be helpful.

Basic knowledge of the following topics is also beneficial:

• Windows servers and clients
• Firewalls and packet inspection devices
• VMware ESXi / vCenter / NSX
• Amazon AWS / Microsoft Azure / VMware vCloud
• Virtualization technologies

Participants are required to bring a laptop computer with a screen resolution of at least 1980 x 1080 or above; a display size of 15" or above.

VI. Course outlines:

1.      Product Overview

• Introduction to Deep Security
• Deep Security protection modules
• Deep Security deployment options
• Deep Security components

2.      Trend Micro™ Deep Security™ Manager

• Server, operating system, and database requirements
• Deep Security Manager architecture
• Installing and upgrading Deep Security Manager

3.      Deep Security Agents

• Deep Security Agent architecture
• Deploying Deep Security Agents
• Viewing computer protection status
• Upgrading Deep Security Agents
• Organizing computers using groups and Smart Folders

4.      Keeping Deep Security Up to Date

• Security updates
• Software updates
• Deep Security relays

5.      Trend Micro™ Smart Protection™

• Smart Protection services used by Deep Security
• Configuring the Smart Protection source

6.      Policies

• Policy inheritance and overrides
• Creating new policies

7.      Protecting Servers from Malware

• Anti-malware scanning techniques
• Enabling anti-malware protection
• Smart Scan

8.      Blocking Malicious Websites

• Enabling web reputation
• Setting the security level

9.      Filtering Traffic Using the Firewall

• Enabling the Deep Security firewall
• Firewall rules
• Traffic analysis
• Traffic order of analysis
• Port scan

10.  Protecting Servers from Vulnerabilities

• Virtual patching
• Protocol hygiene
• Protocol control
• Web application protection
• Enabling intrusion prevention
• Running recommendation scans
• Intrusion prevention rules
• Security Sockets Layer (SSL) filtering
• Protecting web applications

11.  Detecting Changes to Protected Servers

• Enabling integrity monitoring
• Running recommendation scans
• Detection changes to baseline objects

12.  Blocking Unapproved Software

• Enforcement modes
• Enabling application control
• Detecting software changes
• Creating an inventory of approved software
• Pre-approving software changes

13.  Inspecting Logs on Protected Servers

• Enabling log inspection
• Running recommendation scans

14.  Events and Alerts

• Event forwarding
• Alerts
• Event tagging
• Reporting

15.  Protecting Containers

• Continuous integration/continuous deployment
• Software development using containers
• Protecting containers with Deep Security

16.  Automating Deep Security Operations

• Scheduled tasks
• Event-based tasks
• Quick start templates
• Baking the Deep Security Agent into an Amazon® machine image
• Application programming interface

17.  Activating and Managing Multiple Tenants

• Segmentation using multi-tenancy
• Enabling multi-tenancy
• Creating and managing tenants
• Activating Deep Security Agents on tenants
• Usage monitoring

18.  Detecting Emerging Malware Through Connected Threat Defense

• Connected Threat Defense phases
• Trend Micro™ Deep Discovery™ Analyzer
• Trend Micro Apex Central™
• Configuring Deep Security for Connected Threat Defense
• Tracking submission

19.  Protecting Virtual Machines Using the Deep Security Virtual Appliance

• Deep Security Virtual Appliance
• Virtual Appliance deployment models
• Virtual appliance deployment and activation