Designed by operators for operators, this accelerated course is designed to help perform initial incident response activity on Windows systems. This course covers basic and advanced actions a Windows focused responder must perform to reduce the overall impact and costs of incidents.
Learning Objectives
Learning Objectives
Participants of this course will learn how-to:
- Responding to unexpected outages
- Responding to acts of sabotage
- Responding to malicious insiders
- Responding to ransomware
- Media acquisition, disk imaging and memory captures
- Out of band communication techniques
- Coordination and mitigations strategies
- Tactical decision-making
- Modern incident response tools and applications usage for FY 2024