Course Desc: A hands-on examination of the tools and procedures associated with conducting a forensic analysis of network or cloud network incidents. The objective is to collect, examine, and preserve digital evidence and artifacts associated with a network-based cyberattack or incident. Topics include forensic tools and techniques, network monitoring and defense, incident response, intrusion detection/prevention systems, log analysis, cloud computing, and cryptography.
Learning Objectives
After completing this course, you should be able to:
Design a secure network architecture for a modern cloud environment
Examine forensically sound images to determine remediation on networked systems while adhering to standards, laws, policies, and procedures
Process forensic artifacts left by cyber-attacks and other incidents while preserving digital evidence integrity
Evaluate tools and algorithms associated with digital forensics and network intrusion detection/prevention systems
Prepare incident response methodologies and procedures associated with network and cloud incidents
Select appropriate cryptographic protocols, tools, and techniques to properly secure data
Develop a strategy for logging out of cloud projects to conform with government and industry standards
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Work Roles
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.