This two-day instructor-led course enables database administrators who work with enterprise environments to design security for database systems using Microsoft SQL Server 2005. The course emphasizes that students should think about the whole environment, which includes business needs, regulatory requirements and network systems, and database considerations during design. Students will also learn how to monitor security and respond to threats.

Prerequisites

Before attending this course, students must have met at least one of the following

·         Have basic knowledge of security protocols and how they work. For example, NTLM or Kerberos.

·         Have basic knowledge of public key infrastructure (PKI) systems. For example, how public and private keys work, strengths and weaknesses, and what they are used for.

·         Have working knowledge of network architectures and technologies. For example, how a firewall works, how IPSec works in networking context, common vulnerability points, etc.

·         Have working knowledge of Active Directory directory service. For example, security models, policies, group policy objects (GPOs), and organizational units (OUs).

·         Be able to design a database to 3NF and know the trade offs when backing out of the fully normalized design (denormalization) and designing for performance and business requirements in addition to being familiar with design models, such as Star and Snowflake schemas.

·         Have strong monitoring and troubleshooting skills.

·         Have experience creating Microsoft Visio drawings or have equivalent knowledge.

·         Have strong knowledge of the operating system and platform. That is, how the operating system integrates with the database, what the platform or operating system can do, and how interaction between the operating system and the database works.

·         Have knowledge about network security tools. For example, sniffer and port scanning. Must understand how they should be used.

·         Be able to use patch management systems.

·         Have knowledge of common attack methods. For example, buffer overflow, replay attacks, etc.

·         Be familiar with SQL Server 2005 features, tools and technologies.

·         Have a Microsoft Certified Technology Specialist: Microsoft SQL Server 2005 credential – or equivalent experience.

In addition, it is recommended, but not required, that students have completed:

• Course 2278, Writing Queries Using Microsoft SQL Server 2005 Transact-SQL.
• Course 2779, Implementing a Microsoft SQL Server 2005 Database.
• Course 2780, Maintaining a Microsoft SQL Server 2005 Database.
   

Skills Gained
 

At the end of the course, students will be able to:

·         Design SQL Server Security

·         Design a SQL Server Systems Infrastructure Security Policy

·         Create an Infrastructure Security Inventory

·         Design Security Policies for Instances and Databases.

·         Validate Security Policies for Instances and Databases.

·         Integrate Data Encryption into a Database Security Design

·         Design a Security Exceptions Policy