Protect your organization from cyber threats
This course equips you with the essential skills and knowledge to defend your organization's networks and effectively respond to cyber incidents. You'll learn industry-aligned methods, tactics, and procedures based on leading frameworks like NIST 800-61, US-CERT's NCIRP, and PPD-41.
Who Should Attend?
This course is ideal for security professionals responsible for:
- Monitoring and detecting security incidents
- Implementing standardized incident response procedures
- Managing cybersecurity risks
- Identifying and evaluating cyber threats
- Collecting and analyzing cyber intelligence
- Remediating and reporting security incidents
Course Benefits:
- Gain a comprehensive methodology for network defense and incident response.
- Prepare for the CertNexus CyberSec First Responder (CFR-410) certification exam.
Fulfill DoD Directive 8570.01-M compliance requirements for CSSP positions:
- Analyst
- Infrastructure Support
- Incident Responder
- Auditor
Objectives
In this course, you will identify, assess, respond to, and protect against security threats and operate a system and network security analysis platform. You will:
- Assess cybersecurity risks to the organization.
- Analyze the threat landscape.
- Analyze various reconnaissance threats to computing and network environments.
- Analyze various attacks on computing and network environments.
- Analyze various post-attack techniques.
- Assess the organization's security posture through auditing, vulnerability management, and penetration testing.
- Collect cybersecurity intelligence from various network-based and host-based sources.
- Analyze log data to reveal evidence of threats and incidents.
- Perform active asset and network analysis to detect incidents.
- Respond to cybersecurity incidents using containment, mitigation, and recovery tactics.
- Investigate cybersecurity incidents using forensic analysis techniques.
Outline
Below is the course content, which includes a detailed outline of topics and materials covered in the course. Explore and enhance your knowledge!
Lesson 1: Assessing Cybersecurity Risk
- Topic A: Identify the Importance of Risk Management
- Topic B: Assess Risk
- Topic C: Mitigate Risk
- Topic D: Integrate Documentation into Risk Management
Lesson 2: Analyzing the Threat Landscape
- Topic A: Classify Threats
- Topic B: Analyze Trends Affecting Security Posture
- Copyright 2021 CertNexus. All Rights Reserved
Lesson 3: Analyzing Reconnaissance Threats to Computing and Network Environments
- Topic A: Implement Threat Modeling
- Topic B: Assess the Impact of Reconnaissance
- Topic C: Assess the Impact of Social Engineering
Lesson 4: Analyzing Attacks on Computing and Network Environments
- Topic A: Assess the Impact of System Hacking Attacks
- Topic B: Assess the Impact of Web-Based Attacks
- Topic C: Assess the Impact of Malware
- Topic D: Assess the Impact of Hijacking and Impersonation Attacks
- Topic E: Assess the Impact of DoS Incidents
- Topic F: Assess the Impact of Threats to Mobile Security
- Topic G: Assess the Impact of Threats to Cloud Security
Lesson 5: Analyzing Post-Attack Techniques
- Topic A: Assess Command and Control Techniques
- Topic B: Assess Persistence Techniques
- Topic C: Assess Lateral Movement and Pivoting Techniques
- Topic D: Assess Data Exfiltration Techniques
- Topic E: Assess Anti-Forensics Techniques
Lesson 6: Assessing the Organization's Security Posture
- Topic A: Implement Cybersecurity Auditing
- Topic B: Implement a Vulnerability Management Plan
- Topic C: Assess Vulnerabilities
- Topic D: Conduct Penetration Testing
Lesson 7: Collecting Cybersecurity Intelligence
- Topic A: Deploy a Security Intelligence Collection and Analysis Platform
- Topic B: Collect Data from Network-Based Intelligence Sources
- Topic C: Collect Data from Host-Based Intelligence Sources
Lesson 8: Analyzing Log Data
- Topic A: Use Common Tools to Analyze Logs
- Topic B: Use SIEM Tools for Analysis
Lesson 9: Performing Active Asset and Network Analysis
- Topic A: Analyze Incidents with Windows-Based Tools
- Topic B: Analyze Incidents with Linux-Based Tools
- Topic C: Analyze Indicators of Compromise
Lesson 10: Responding to Cybersecurity Incidents
- Topic A: Deploy an Incident Handling and Response Architecture
- Topic B: Mitigate Incidents
- Topic C: Hand Over Incident Information to a Forensic Investigation
Lesson 11: Investigating Cybersecurity Incidents
- Topic A: Apply a Forensic Investigation Plan
- Topic B: Securely Collect and Analyze Electronic Evidence
- Topic C: Follow Up on the Results of an Investigation
Prerequisites:
- 2+ Years of Experience (or Education) in Network Security: Gain foundational knowledge through work or studies in cybersecurity.
- Security Awareness: Possess an eagerness to identify vulnerabilities and threats to information security.
- Understanding of Network Safeguards: Grasp the concepts and operations of firewalls, intrusion prevention systems, and VPNs.
- Understanding of Computing Safeguards: Understand basic authentication/authorization, resource permissions, and anti-malware mechanisms.
- Basic OS Skills: Have foundation-level skills with common operating systems used in computing environments.
- Networking Fundamentals: Possess an entry-level understanding of network concepts like routing and switching.
- TCP/IP Networking Knowledge: Have general or practical knowledge of major protocols like TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP.
Methodology:
- Engaging Batch Training: Learn alongside a focused group of students.
- Hands-on Learning: Gain practical experience through real-time exercises.
Conclusion:
By meeting these prerequisites and enrolling in this course, you'll be well-positioned to excel in network defense and incident response. This comprehensive program equips you with the skills and knowledge to protect your organization's critical data and infrastructure.
Join IIPD Global Riyadh to take your cybersecurity career to the next level!
We offer a dynamic learning environment with experienced instructors and an industry-aligned curriculum. Enroll today and become a vital asset in the fight against cyber threats.
