![Private Training Endpoint Protection Server [ Setup And Implementation, Centralized Security Management ] - Gambar 1](https://kuantansingingi.nale.co.id/wp-content/uploads/2025/10/Training-Online-Network.jpg "Training Online Network")
![Private Training Online cPanel Administration 1 Team [ 2-6 Personal ]](https://kuantansingingi.nale.co.id/wp-content/uploads/2024/09/Training-Online-cPanel.jpg)
Private Training Endpoint Protection Server [ Setup And Implementation, Centralized Security Management ]
Rp17.500.260
Day 1: Concepts & Installation
Day 2: Configuration & Management
Day 3: Incident Response & Integration
### *📍 Day 1 – Concepts & Installation*
1. *Introduction to Endpoint Security*
* Definition of endpoints and common threat vectors
* Evolution from antivirus to EDR (Endpoint Detection & Response)
* Signature-based vs. behavioral vs. AI-based detection
2. *Endpoint Protection Server Architecture*
* Main components: Management Server, Agent, Console, Database
* Client-server communication models
* On-premise vs. cloud deployment topologies
3. *Server Installation and Setup*
* OS and database preparation (SQL / PostgreSQL)
* Installing the Endpoint Protection Management Server
* License activation and agent registration
* Agent deployment (manual & via policy)
4. *Hands-on Lab*
* Deploy agents to Windows and Linux clients
* Verify connectivity between server and agents
—
### *📍 Day 2 – Configuration & Management*
1. *Security Policy Configuration*
* Real-time protection, behavioral detection, exploit prevention
* USB device control, web control, and firewall rules
* Update and patch management policies
2. *Client Management*
* Grouping & tagging endpoints by department or location
* Remote scanning and quarantine handling
* Centralized log collection and status monitoring
3. *Dashboard & Reporting*
* Understanding alerts and events
* Generating activity and threat reports
* Analyzing agent health status
4. *Hands-on Lab*
* Create and apply endpoint security policies
* Simulate malware detection using EICAR test file
—
### *📍 Day 3 – Incident Response & Integration*
1. *Incident Handling on Endpoints*
* Detecting and mitigating ransomware/trojan attacks
* Isolating infected endpoints
* Recovery and remediation techniques
2. *Integration & Automation*
* Integration with Active Directory
* Integration with SIEM tools (e.g., Wazuh, Splunk, Microsoft Sentinel)
* Basics of SOAR (Security Orchestration, Automation & Response)
3. *Best Practices & Maintenance*
* Server backup and configuration recovery
* Certificate rotation & agent updates
* Server hardening and compliance practices
4. *Final Lab & Evaluation*
* Simulated security incident scenario
* Applying mitigation policies and creating a final report
*NB:
- Keseluruhan acara dan tempat penyelenggaraan akan disiapkan oleh PT Nale
- Include Penginapan Bintang 4 selama 3 hari
- Include meals 3x/day
