Course provides an In-depth coverage of incident response and incident handling, including identifying sources of attacks and security breaches; analyzing security logs; recovering the system to normal; performing postmortem analysis; and implementing and modifying security measures.
Learning Objectives
Students will be able to Identify sources of attacks; restore the system to normal operation; identify and prevent security threats; perform a postmortem analysis; identify computer investigation issues; and identify the roles and responsibility of the incident response team.
Framework Connections
Specialty Areas
- Cyber Defense Analysis
- Cyber Investigation
- Threat Analysis
Feedback
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.