CSIR 150
Cyber Security and Incident Response
Cyber Security & Incident Response 150 is a course for developing and improving Incident response skills and capabilities.
150 Hours
Cloud Environment
Instructor Led
Virtual Labs & Simulation
Cyber Security & Incident Response is a 150-hour course designed for IT professionals and students seeking to develop or enhance their incident response skills. With 83 hours of hands-on training, participants gain practical experience in managing real-world cyber incidents. The course covers threat detection, malware analysis, SIEM triage, and digital forensics. It also introduces Cyber Threat Intelligence (CTI), memory forensics, and investigative reporting. Ideal for junior analysts, SOC professionals, and advanced STEM students
WHO IS IT FOR
STEM Students (Year 3+)
IT and Cyber Security juniors
Cyber Security Analysts and Practitioners
Security Operations (SecOps) professionals
GOALS
Understand and explain the principles and processes of cyber security incident response.
Perform necessary activities while responding to common incidents
Understand the basics of Cyber Threat Intelligence and Digital Forensics, and leverage these to optimize incident response processes
Understand the basics of Malware Analysis
Requirements
Basic knowledge in IT, including familiarity with components of IT infrastructure (i.e., networks and operating systems)
Basic experience with IT processes and technologies
- Historical Brief of Cybersecurity
- Defining Cybersecurity
- Cyber Security Governance and Compliance
- Cybersecurity Principle
- Preliminary Alignments
- Attacker Mindset
- Defender Mindset
- The Security Operation Center (The SOC)
- NIST SP800-60 Methodology
- MITRE ATT&CK Matrix
- The Technological Building Blocks of SOCs
- Sources of Security Events – The Network
- Sources of Security Events – Desktops and Servers
- Working with Raw Data and Data Parsing
- Data Aggregation and Events Correlation
- Conducting Triage via SIEM Resources
- Introduction to CTI
- Introduction to OSINT
- CTI/OSINT Practice
- Introduction to Cyber Forensics
- Handling Digital Evidence
- Common Cyber Forensics Tools
- Forensics Artifacts – Windows OS
- Forensics Artifacts – Network
- Introduction to Memory Forensics
- Practical Forensic Investigation
- Malware Analysis Intro
- Static vs Dynamic Malwares Analysis
- Dynamic Malware Analysis
- Email Analysis, IOC Investigations
- Writing Investigation Report
- Practical Malware Analysis
- Attacker Mindset
- Defender Mindset
- Hands-On Marathon
- Final Project
83 Hours of hands-on activities
Total amount of practical experience during this course.