Course covers Computer information systems security monitoring, intrusion detection, and crisis management. Includes alarm management, signature configuration, sensor configuration, and troubleshooting components. Emphasizes identifying, resolving, and documenting network crises and activating the response team.
Learning Objectives
Students will be able to Build IDS sensors and attach them to the network (hardware and software); install and manage a secure communication link between all sensors and the monitor; install and manage event database(s); analyze an event and trends; install, manage, and interpret syslog servers and system logs; identify legal and policy issues associated with system and network monitoring; and deploy, implement, and test IDS security plan.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Cyber Defense Analysis
- Systems Analysis
- Systems Administration
- Systems Requirements Planning
- Vulnerability Assessment and Management
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@hq.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.