Examiners will be introduced to different versions of ESX, practices for securing ESX servers, access to the management console, ESX logging and other configuration issues that ensure ESX virtual server hosts are secure and stable. Students will similarly review Hyper-V and best practices for securing a Hyper-V environment. The course will tie all of these concepts together with the formulation of a suggested audit program of ESX/Hyper-V and the virtual server environment. Case studies using a combination of live demonstrations and exercises will reinforce important virtualization concepts and associated audit points addressed in real audit projects to better prepare IT examiners for virtualization reviews at banks being examined.
Upon completion of this course, participants will be able to:
- Describe virtualization basics;
- Discuss hardware virtualization considerations, clustering, and back-up strategies;
- Explain the components of a successful audit program;
- Describe the key elements in planning for disaster recovery;
- Explain how virtualization fits in with existing guidance; and,
- Discuss the latest hypervisor attacks and potential areas of concern.
Facilitated classroom discussion and lectures
Four and one-half days
Examiners or ITEAs who will lead or participate on level B and A examinations.
This course is open to appropriate staff of the FDIC and partner government regulatory agencies. This course is not open to the public or staff of private banks.
Participant should have attended the following:
- Introduction to Security
- Introduction to Telecommunications and Networking, and
- Deploying Internet and Intranet Firewalls
This course may provide CPE/CEU credits; however, any credits offered will be handled by the vendor.
For more information concerning course content and administration, please email Dr. Allen Yarbrough or call (703) 516-1235.
For questions regarding course registration, please contact the CURegistrar.