Part 1 - An Overall View of the Course | Cybrary

.banner-container.gbi--1584220633:before { opacity: 1; background-image: url('//images.ctfassets.net/kvf8rpi09wgk/2bcb1ThKRYPgD8mgIPLRJF/812cb7a77584ac0477c4a729a0bae83e/cybrary_background.jpg?w=500&q=55'); }

Create Free Account

NEED TO TRAIN YOUR TEAM? LEARN MORE

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Time

8 minutes

Difficulty

Intermediate

Video Activity

This lesson offers an introduction into the topic if incident response and advance forensics and discusses what will be covered over the entire course. Topics covered are: · The Cyber Security Paradox: Security is either ...

Create Free Account

NEED TO TRAIN YOUR TEAM? LEARN MORE

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

This lesson offers an introduction into the topic if incident response and advance forensics and discusses what will be covered over the entire course. Topics covered are: · The Cyber Security Paradox: Security is either 90% or 10% (LTC George Jacobson during the Vietnam War) · What is Cyber Incident Response? · How do incidents and events differ? · NIST 800-61 · The CIA Triad · How and why do cyber security incidents occur?

Part 1 - An Overall View of the Course

Part 2 - The Humans Behind Cyber Security Incidents

Part 3 - The Sony Hack Case Study

Part 1 - An Overview of Incident Response Policy

Part 2 - The Elements of an Incident Response Policy

Part 3 - The Role of Communication with Law Enforcement when it comes to security

Part 4 - The Different Types of Incident Response Teams

Part 5 - Outsourcing Considerations

Part 6 - The Role of the Incident Response Manager

Part 7 - What does an Incident Response team do?

Part 1 - An Introduction to Incident Handling

Part 2 - CIRC Team Composition

Part 3 - Incident Response Policies

Part 4 - The REACT Principle

Part 5 - Maintaining the Integrity of the Scene following an incident

Part 6 - The Content of Notice

Part 7 - The Respond Part of Incident Response

Part 1 - An Introduction to legal considerations of incident response

Part 2 - Expectation of Privacy

Part 3 - Personally Identifiable Information (PII)

Part 4 - Giving notice to individuals

Part 5 -Benefits of Information Sharing

Part 1 - Forensics in Support of an Incident Response

Part 2 - The Phases of Investigation

Part 3 - The Preservation Phase of Investigation

Part 4 - Keys of Preservation

Part 5 - Volatile Data Considerations

Part 6 - Capturing the data

Part 7 - Imaging concepts

Part 8 - Volatile Memory Capture

Part 9 - Forensics in Support of Incident Response

Part 10 - Formatting a disk for Incident Response

Part 11 - Using the FTK Imaging Software

Part 12 - The Forensic Acquisition of Data from a PC

Part 13 - Navigating the H Drive

Part 14 - Obtaining the Windows Bitlocker Encryption Keys

Part 15 - Obtaining the Windows Bitlocker Encryption Keys (continued)

Part 16 - The Autopsy Program

Part 1 - What is Insider Threat?

Part 2 - American Superconductor Case Study

Part 3 - Indicators to identify an insider threat

Part 4 - Using Automated processes to look for indicators of in insider threats

Part 5 - Policy Enforcement

Part 6 - Policies and procedures

Part 7 - Policies and procedures (continued)

Part 8 - Policies and procedures (continued)

Part 1 - Malware incidents

Part 2 - Setting up a Virtual Machine

Part 3 - Dynamic Analysis

Part 1- Incident Recovery

Part 2 - Resiliency: The Answer to the Cyber Security Paradox