David Cannon, President & CEO, CertTest
How to use the hottest GRC tool in existence. With several profiles including ISO27001, FISMA, and HIPAA compliance, SCAP is the secret to automating the technical security of your servers. It implements the Defense Information System Agency Securty Target (DISA/STIG), National Institute of Standards 800-53 controls and top CVE vulnerability protections. SCAP can automate the setting and verification of over 400 best practices in under 1 minute. During the course we will cover using SCAP manually and customizing a fully automated mode so you will understand the how it actually works. SCAP is highly configurable open-source GRC tool used by all branches of U.S. Government, Military and Civilian organizations. Mr. Cannon has been using the product on over 60 secure server builds during the past two years. Class includes a quick start guide, lessons learned and tips for both implementation and auditing. You are strongly encouraged to bring your laptop to participate in class.