Government Training

Classroom Training: Retina, REM, STIG, Gold Disk, and CCRI 

• Consists of three intense days of training in concepts, architecture and implementation best practices
• Utilize Retina and REM to discover vulnerabilities, perform risk assessments and validate IAVM compliances
• Learn to implement STIGs and SRRs, using Gold Disk and other components of the IA tool suite in a lab environment
• Learn how to scan a network, discover and report security vulnerabilities
• Ideal for system admins, security analysts, network engineers and anyone working in a IA capacity within any DoD environment

View course description along with training dates and locations:

Course Content

Retina Network Scanner – The Retina training course will teach a security professional how to scan a network and discover security vulnerabilities that exists that could pose a threat to corporate data. The discovery of all assets and devices is a benefit of the Retina scanner and automatic scheduling allows the security professional to maintain a secure environment by regular scheduled scans. Reporting of the vulnerability assessment scan will be taught and the introduction to the REM central console for data collection and central management.

REM Security Management Console – The REM training will teach the management of the eEye Enterprise Management solution for vulnerability assessment. The security professional will be able to demonstrate the level of risk that a client is experiencing at any given time and group assets according to geography, application or business unit. The management of multiple Retina scanners as well as enterprise reporting is covered in the REM training course 

STIG and GOLD DISK – Designed for anyone who is responsible for fielding or maintaining the security posture of Government Systems, the STIG and Gold Disk training provides users with an interactive course covering the details of the STIG settings and DISA Gold Disk usage and best practice. Topics include Security Readiness Review Scripts (SRR's) for the Windows platforms, hands-on implementation and usage of tools from the IA tool suite to perform a manual analysis of lab devices, and discussion around performing Firewall, Router, HBSS, and VM Ware ESX STIG validation. Gold Disk usage, best practices and problem avoidance are covered in depth as students successfully setup and evaluate assets using the Gold Disk. Discussion and practice around choosing and understanding specific MAC (mission assurance categories) levels and policy settings (Gold/Platinum), interpreting and understanding findings, and automated remediation is included. General content, finding review and VMS reporting are also covered.

CCRI – Designed as an overview for installations that are preparing for pending inspection, or just want to be ahead of the curve. The CCRI Preparation overview explores the history and development of the CCRI as well and the Grading Categories, relevant severities and assessment components. CCRI preparation assessment methodologies, best practices, and tips from pre inspection auditors are covered providing some insight as to what to expect and where to go for additional help.