Introduction to IT and Cybersecurity
MicroCourse Content
Module 1: Introduction
Module 2: Incident Response Policy
7m
2.1An Overview of Incident Response Policy
10m
2.2The Elements of an Incident Response Policy
7m
2.3The Role of Communication with Law Enforcement when it comes to security
9m
2.4The Different Types of Incident Response Teams
7m
2.5Outsourcing Considerations
9m
2.6The Role of the Incident Response Manager
4m
2.7What does an Incident Response team do?
Module 3: Incident Handling
Module 4: Legal Aspects of Incident Handling
Module 5: Incident Forensics
8m
5.1The Phases of Investigation
10m
5.2The Preservation Phase of Investigation
9m
5.3Keys of Preservation
8m
5.4Volatile Data Considerations
8m
5.5Capturing the data
10m
5.6Imaging concepts
12m
5.7Volatile Memory Capture
10m
5.8Forensics in Support of Incident Response
9m
5.9Formatting a disk for Incident Response
9m
5.10Using the FTK Imaging Software
8m
5.11The Forensic Acquisition of Data from a PC
10m
5.12Navigating the H Drive
5m
5.13Obtaining the Windows Bitlocker Encryption Keys
5m
5.14Obtaining the Windows Bitlocker Encryption Keys (continued)
13m
5.15The Autopsy Program
Module 6: Insider Threat
10m
6.1What is Insider Threat?
4m
6.2American Superconductor Case Study
15m
6.3Indicators to identify an insider threat
8m
6.4Using Automated processes to look for indicators of in insider threats
8m
6.5Policy Enforcement
8m
6.6Policies and procedures
9m
6.7Policies and procedures (continued)
8m
6.8Policies and procedures (continued)
9m
6.9Malware incidents
7m
6.10Setting up a Virtual Machine
9m
6.11Dynamic Analysis
14m
6.12Incident Recovery
7m
6.13Resiliency: The Answer to the Cyber Security Paradox
Module 7: 0P3N
MicroCourse Description
What is Incident Response? Incident response is an organized approach to addressing and managing the aftermath of a security breach or attack. Why do I need this certification? As a part of the Incident Response process, professionals will need to establish a formal response process, along with how to capture, record and track incidents and understand what that data can reveal. What will I learn? The primary goal of this course is to prepare professionals for common knowledge of CIRT practices. Get your Incident Response and Advanced Forensics Certification Today: The Incident Response Micro Certification is developed to teach the best practices in identifying a security incident, as well as how to respond. Computer security incident activity can be defined as network or host activity that potentially threatens the security of computer systems. Generally speaking, most organizations have a Computer Incident Response Team (CIRT) in place to handle such incident, but regardless if of their existence in your organization or not, each company will need to define what a computer security incident is specific to their site. As a part of the Incident Response process, professionals will need to establish a formal response process, along with how to capture, record and track incidents and understand what that data can reveal. Likewise, you?ll learn how incident reporting contributes to improved training, improved security practices and what types of adverse impacts not having a sound incident response and reporting system would produce. The primary goal of this course is to prepare professionals for common knowledge of CIRT practices.
Instructed By
Max Alexander
Instructor
Provided By
Course Components
On Demand Videos to learn from industry leaders
Assessments to gauge understanding and comprehension
Certificate of Completion
Complete this entire course to earn a Incident Response & Advanced Forensics Certificate of Completion
