During this 5-day course of super intensive training you will analyze, learn, and practice critical tasks for implementing highly secure SQL Server infrastructure.
Module 1: Overview of SQL Server Security (SQL Server 2022 & 2025)
- New security features in SQL Server 2022 and 2025, including enhanced encryption and cloud integration.
- SQL Server architecture and how it impacts security.
- Integration with Azure SQL Database, Azure Defender, and Azure Active Directory for improved security in hybrid environments.
Module 2: Common Threats & Best Practices for Data Protection
- Identifying common SQL Server vulnerabilities (SQL injection, unauthorized access, misconfigurations).
- Best practices for protecting SQL Server, including encryption, secure authentication, and role-based access control.
Module 3: Setting Up SQL Server Environment
- Installation of SQL Server 2022, ensuring secure configuration.
- Configuring firewalls and ports for secure SQL Server access.
- Testing connectivity using different protocols (TCP/IP, Named Pipes) and validating network security.
Module 4: Securing the Operating System & Network
-
Hardening Windows Server to protect SQL Server from external threats.
-
Configuring secure file-sharing, system permissions, and Windows Defender.
-
Setting up firewall rules and encrypted communications to prevent unauthorized access.
Module 5: User Account and Role Management
- Creating and managing SQL Server logins, using Windows Authentication vs. SQL Authentication.
- Integrating Azure Active Directory Authentication for centralized identity management.
- Role-based security and assigning permissions based on job functions to implement the Principle of Least Privilege.
Module 6: Managing Permissions and Data Access
- Implementing row-level security to restrict data access based on user context.
- Using Dynamic Data Masking to obfuscate sensitive information from unauthorized users.
- Configuring Custom Permissions and testing access controls with different user roles.
Module 7: Data Encryption in SQL Server
- Always Encrypted for encrypting sensitive data both at rest and in transit.
- Transparent Database Encryption (TDE) for protecting entire databases and backups.
- Column-Level Encryption and implementing Dynamic Data Masking to secure sensitive columns.
- Best practices for End-to-End Encryption to secure data throughout its lifecycle.
Module 8: Backup Security
- Best practices for securing backup files, including encryption and managing backup certificates.
- Creating encrypted backups and testing backup and restore procedures to ensure data security.
Module 9: Auditing SQL Server Access and Data Usage
- Configuring SQL Server Auditing to log access attempts, data changes, and administrative actions.
- Using Extended Events to monitor SQL Server activities and detect unusual or suspicious behavior.
- Implementing auditing for compliance with regulations like GDPR, PCI-DSS, and HIPAA.
Module 10: Security Monitoring Tools
- Integrating Azure Defender for SQL Server to monitor vulnerabilities and threats in SQL Server environments.
- Using Azure Sentinel for advanced threat detection and security information management (SIEM).
- Setting up monitoring alerts and integrating SQL Server logs with SIEM systems for real-time threat analysis.
Module 11: Securing SQL Server Services
- Securing SQL Server Agent, Analysis Services (SSAS), and Reporting Services (SSRS) by controlling access to these services and jobs.
- Implementing policies to ensure that only authorized users have access to critical SQL Server services and data.
- Securing Azure SQL Database by configuring firewall settings, virtual networks, and managing secure access through Private Endpoints.
Module 12: Protecting SQL Server Instances from External Attacks
- Techniques to prevent SQL injection and other common attacks by using parameterized queries and stored procedures.
- Securing SQL Server against Denial of Service (DoS) attacks by configuring server resources and network isolation.
- Ensuring secure communication by using SSL/TLS for data in transit and encryption for communication channels between clients and SQL Server instances.
Module 13: Simulating Attacks and Testing Responses
- Simulating real-world attacks, such as SQL injection, unauthorized access attempts, and Denial of Service attacks.
- Testing SQL Server defenses against these simulated attacks to evaluate security configurations and response mechanisms.
- Reviewing SQL Server’s ability to log attacks and respond appropriately to minimize damage.
Module 14: Managing Certificates
- Configuring SSL/TLS certificates for encrypted connections between SQL Server and clients.
- Managing certificates for backup encryption and securing data exchanges.
- Ensuring the integrity of certificates used for authentication and encryption across the SQL Server infrastructure.
Certification
After finishing the course, you will be granted a CQURE Certificate of Completion. Please note that after completing the course you will also be eligible for CPE points!
FAQ – Introduction to Penetration Testing
Varighet: 5 dager (35 timer)
Format: Klasserom eller live online med virtuelle laber
Sertifisering: Livslang CQURE Certificate of Completion
Hva koster kurset?
Prisen er 39 900 NOK for 5 dager. Kurset inkluderer intensiv live virtuell undervisning, praktiske lab-øvelser, kursmateriell og livslang sertifisering etter fullført kurs.
Hvor lenge varer kurset?
Kurset går over 5 intensive dager og gjennomføres som en internasjonal Live Virtual Class.
Hvem passer kurset for?
Dette er et avansert kurs innen SQL Server-sikkerhet og passer for:
- Databaseadministratorer (DBA)
- Infrastrukturarkitekter
- Sikkerhetsspesialister
- Systemingeniører
- Avanserte databaseutviklere
- IT-profesjonelle og sikkerhetskonsulenter
- Andre som har ansvar for databasesikkerhet
Hvilket nivå er kurset på?
Kurset er på avansert nivå og er rettet mot fagpersoner med solid erfaring innen SQL Server, Windows-infrastruktur og IT-sikkerhet.
Hva lærer jeg i løpet av kurset?
Du lærer å identifisere, utnytte og sikre mot reelle trusler mot SQL Server-infrastruktur. Etter kurset vil du kunne:
- Forstå moderne SQL Server-sikkerhet (2022 og 2025)
- Implementere kryptering, rollebasert tilgang og minste privilegium-prinsippet
- Beskytte databaser mot SQL injection, DoS og uautorisert tilgang
- Konfigurere auditing og overvåking
- Integrere sikkerhet med Azure Defender og Sentinel
- Teste og validere sikkerhetsoppsett gjennom angrepssimuleringer
Er kurset praktisk rettet?
Ja. Kurset er workshop-basert med dyp teknisk gjennomgang og omfattende lab-øvelser. Du jobber praktisk med konfigurasjon, angrepssimulering og sikring av SQL Server-miljøer.
Hvilke temaer dekkes i kurset?
Kurset dekker blant annet:
- SQL Server-arkitektur og nye sikkerhetsfunksjoner
- Beskyttelse mot vanlige sårbarheter og angrep
- Sikker installasjon og konfigurasjon
- Operativsystem- og nettverkshardening
- Bruker- og rolleadministrasjon
- Row-level security og Dynamic Data Masking
- Always Encrypted og Transparent Data Encryption (TDE)
- Sikring av backup og sertifikathåndtering
- Auditing, Extended Events og compliance
- Integrasjon med Azure Defender og Sentinel
- Beskyttelse mot eksterne angrep
- Simulering av reelle angrep og testing av forsvar
Får jeg sertifisering?
Ja. Etter fullført kurs mottar du en livslang sertifisering som dokumenterer din kompetanse innen SQL Server-sikkerhet.
Hvordan gjennomføres kurset?
Kurset leveres som en internasjonal Live Virtual Class. Du deltar digitalt og får tilgang til lab-miljøer, direkte dialog med instruktør og samarbeid med deltakere fra hele verden.
Hva gjør dette kurset unikt?
Kurset kombinerer offensiv og defensiv sikkerhet. Du lærer ikke bare hvordan SQL Server sikres – men også hvordan angripere tenker og opererer. Denne helhetlige tilnærmingen gir dypere forståelse og sterkere praktisk sikkerhetskompetanse.
Hvilke forkunnskaper anbefales?
Det anbefales at du har solid erfaring med SQL Server-administrasjon og Windows Server-miljøer. Grunnleggende forståelse for nettverk og sikkerhet er en fordel.
See other relevant courses to explore:
Microsoft SQL & Database
Microsoft Security & Identity
Microsoft Azure & Cloud Security
