1. Training
  2. Education & Training Catalog
  3. United Training Commercial, LLC
  4. Cybersec First Responder

Cybersec First Responder

This course covers the duties of those who are responsible for monitoring and detecting security incidents in information systems and networks, and for executing a proper response to such incidents. Depending on the size of the organization, this individual may act alone or may be a member of a cybersecurity incident response team (CSIRT). The course introduces tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate the organization's security, collect and analyze cybersecurity intelligence, and handle incidents as they occur. Ultimately, the course promotes a comprehensive approach to security aimed toward those on the front lines of defense. This course is designed to assist students in preparing for the CyberSec First Responder (Exam CFR-310) certification examination. What you learn and practice in this course can be a significant part of your preparation.

Course Overview

Overall Proficiency Level
2 - Intermediate
Course Prerequisites

To ensure your success in this course, you should meet the following requirements: At least two years (recommended) of experience or education in computer network security technology, or a related field. The ability or curiosity to recognize information security vulnerabilities and threats in the context of risk management. Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs. General knowledge of the concepts and operational framework of common assurance safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms. Foundation-level skills with some of the common operating systems for computing environments. Entry-level understanding of some of the common concepts for network environments, such as routing and switching. General or practical knowledge of major TCP/IP networking protocols, including, but not limited to, TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP

Training Purpose
Functional Development
Skill Development
Specific Audience
Academia
All
Contractor
Federal Employee
General Public
Delivery Method
Classroom
Online, Instructor-Led
Course Location

707 Landa Street
Suite 110
New Braunfels, TX 78130

  • Classroom
  • Online, Instructor-Led

Learning Objectives

In this course, you will understand, assess and respond to security threats and operate a system and network security analysis platform. You will:

  • Compare and contrast various threats and classify threat profile
  • Explain the purpose and use of attack tools and technique Explain the purpose and use of post exploitation tools and tactic
  • Explain the purpose and use of social engineering tactic Given a scenario, perform ongoing threat landscape research and use data to prepare for incident
  • Explain the purpose and characteristics of various data source
  • Given a scenario, use appropriate tools to analyze log
  • Given a scenario, use regular expressions to parse log files and locate meaningful data
  • Given a scenario, use Windows tools to analyze incidents
  • Given a scenario, use Linux-based tools to analyze incidents
  • Summarize methods and tools used for malware analysis
  • Given a scenario, analyze common indicators of potential compromise
  • Explain the importance of best practices in preparation for incident response
  • Given a scenario, execute incident response process
  • Explain the importance of concepts that are unique to forensic analysis
  • Explain general mitigation methods and devices

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • All-Source Analysis
  • Cyber Defense Analysis
  • Incident Response
  • Threat Analysis
  • Vulnerability Assessment and Management

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov(link sends email). Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.

Last Published Date:

You have been selected to participate in a brief survey about your experience today with National Initiative for Cybersecurity Careers and Studies.

Would you like to participate in our survey?

If you accept you will be leaving the National Initiative for Cybersecurity Careers and Studies website and going to a third party site.
That site may have different privacy, security and accessibility policies than the National Initiative for Cybersecurity Careers and Studies site.
National Initiative for Cybersecurity Careers and Studies does not endorse any commercial products, services, programs or content on the third party website.
Thank you for visiting our site. We hope your visit was informative and enjoyable.