Designed by operators for operators, this accelerated course is designed to help perform initial incident response activity on Windows systems. This course covers basic and advanced actions a Windows focused responder must perform to reduce the overall impact and costs of incidents.
Learning Objectives
Learning Objectives
Participants of this course will learn how-to:
- Responding to unexpected outages
- Responding to acts of sabotage
- Responding to malicious insiders
- Responding to ransomware
- Media acquisition, disk imaging and memory captures
- Out of band communication techniques
- Coordination and mitigations strategies
- Tactical decision-making
- Modern incident response tools and applications usage for FY 2024
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Cyber Defense Analysis
- Cyber Defense Infrastructure Support
- Incident Response
- Digital Forensics
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.