fbpx
CyberSec-First-Responder-logo

TechExpert Training Center, a leading provider of instructor-led technical training, adds CyberSec First Responder: Threat Detection and Response to public training schedule. This cybersecurity training course and corresponding ProCert-accredited certification, Certified CyberSec First Responder, were developed by Logical Operations with the goal of helping organizations combat cybersecurity threats.

The number of exceptional IT security breaches continues to grow exponentially, which are part of an overall trend toward increasingly destructive hacking incidents. These hacking incidents further highlight the enormous demand for qualified security professionals who can protect their organizations’ networks and prevent significant losses. Delivered in an instructor-led setting over a five-day period, CyberSec First Responder: Threat Detection and Response is designed for information assurance professionals who perform job functions related to the development, operation, management, and enforcement of security capabilities for systems and networks. The CyberSec First Responder: Threat Detection and Response course will prepare security professionals to become the first line of response against cyber-attacks by teaching students to analyze threats, design secure computing and network environments, proactively defend networks, and respond to and investigate cybersecurity incidents.

Overview

About this Course

This course is designed for information assurance professionals who perform job functions related to the development, operation, management, and enforcement of security capabilities for systems and networks.

This course is also designed for students who are seeking to fulfill DoD directive 8570.01 for information assurance (IA) training. This program is designed for personnel performing IA functions, establishing IA policies and implementing security measures and procedures for the Department of Defense and affiliated information systems and networks.

Prerequisites

To ensure your success in this course you should have the following requirements:

  • Recommended at least 2 years of experience in computer network security technology or a related field.
  • Recognize information security vulnerabilities and threats in the context of risk management.
  • Operate at a foundational level some of the common operating systems for computing environments.
  • Foundational knowledge of the concepts and operational framework of common assurance safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms.
  • Operate at a foundational level some of common concepts for network environments, such as routing and switching.
  • Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs (virtual private networks).

    • You can obtain this level of skills and knowledge by taking the courses or by passing the relevant exams:

  • CompTIA A+
  • CompTIA Network+
  • CompTIA Security+

    • Course Objectives:
    In this course, you will develop, operate, manage, and enforce security capabilities for systems and networks. You will:
    • Assess information security risk in computing and network environments
    • Create an information assurance lifecycle process
    • Analyze threats to computing and network environments
    • Design secure computing and network environments
    • Operate secure computing and network environments
    • Assess the security posture within a risk management framework
    • Collect cybersecurity intelligence information
    • Respond to cybersecurity incidents
    • Investigate cybersecurity incidents
    • Audit secure computing and network environments

    Course Details

    Course Outline
    Lesson 1: Assessing Information Security Risk
    • Identify the Importance of Risk Management
    • Assess Risk
    • vMitigate Risk
    • Integrate Documentation into Risk Management
    Lesson 2: Creating an Information Assurance Lifecycle Process
    • Evaluate Information Assurance Lifecycle Models
    • Align Information Security Operations to the Information Assurance Lifecycle
    • Align Information Assurance and Compliance Regulations
    Lesson 3: Analyzing Threats to Computing and Network Environments
    • Identify Threat Analysis Models
    • Assess the Impact of Reconnaissance Incidents
    • Assess the Impact of Systems Hacking Attacks
    • Assess the Impact of Malware
    • Assess the Impact of Hijacking and Impersonation Attacks
    • Assess the Impact of Denial of Service Incidents
    • Assess the Impact of Threats to Mobile Infrastructure
    • Assess the Impact of Threats to Cloud Infrastructures
    Lesson 4: Designing Secure Computing and Network Environments
    • Information Security Architecture Design Principles
    • Design Access Control Mechanisms
    • Design Cryptographic Security Controls
    • Design Application Security
    • Design Computing Systems Security
    • Design Network Security
    Lesson 5: Operating Secure Computing and Network Environments
    • Implement Change Management in Security Operations
    • Implement Monitoring in Security Operations
    • Test and Evaluate Information Assurance Architectures
    Lesson 6: Assessing the Security Posture Within a Risk Management Framework
    • Deploy a Vulnerability Assessment and Management Platform
    • Conduct Vulnerability Assessments
    • Conduct Penetration Tests on Network Assets
    • Analyze and Report Penetration Results
    Lesson 7: Collecting Cybersecurity Intelligence Information
    • Deploy a Security Intelligence Collection and Analysis Platform
    • Collect Data from Security Intelligence Sources
    • Establish Baselines and Make Sense of Collected Data
    Lesson 8: Analyzing Cybersecurity Intelligence Information
    • Analyze Security Intelligence to Address Incidents
    • Incorporate Security Intelligence and Event Management
    Lesson 9: Responding to Cybersecurity Incidents
    • Deploy an Incident Handling and Response Architecture
    • Perform Real-Time Incident Handling Tasks
    • Prepare for Forensic Investigation
    Lesson 10: Investigating Cybersecurity Incidents
    • Create a Forensics Investigation Plan
    • Securely Collect Electronic Evidence
    • Identify Who, Why, and How of an Incident
    • Follow up on the Results of an Investigation
    Lesson 11: Auditing Secure Computing and Network Environments
    • Deploy a Systems and Processes Auditing Architecture
    • Maintain a Deployable Audit Toolkit
    • Perform Audits Geared Toward the Information Assurance Lifecycle

    Send me more information on this course

    Contact Form