This course aims to teach students how to protect their information system and networks from external threats by first effectively detecting any such occurrence and then preparing a correct response to solve such problems. The course is for both: an individual who is solely responsible for preventing the system from external threats or someone who is part of cybersecurity incident response team (CSIRT). A student will be able to learn how to manage cybersecurity risks, detect different types of threats, gather and analyze cybersecurity intelligence, measure how secure an organization’s information systems are and preparing responses to any threats which take place. Hence, this course provides a great learning opportunity for securing information systems and networks for the targeted individuals.

Studying this course will enable students to be prepared for CyberSec First Responder (Exam CFR-210) certification examination.

Moreover, students who are willing to complete their DoD directive 8570.01 for information assurance (IA) training can do so by taking this course. People working for information assurance i.e. making its policies and carrying out security procedures for the Department of Defense and affiliated information systems and networks will highly benefit from this course.

Course Objectives:

To analyze the security threats and prepare an effective response to them by learning the functionality of systems and network security.

You will:

• Examine effective responses after attacks on computing and network environments.

• Evaluate information security risk in computing and network environments.

• Examine potential reconnaissance danger to computing and network environments.

• Evaluate how secure a firm is within a risk management framework.

• Gather cybersecurity intelligence.

• Assess data collected from security and event logs.

• Evaluate assets and networks.

• Examine cybersecurity threat landscape in detail

• Manage an effective treatment for various cybersecurity incidents.

• Scrutinize different cybersecurity incidents.

• Menace computing and network environments.

Audience:

Primary consumers of this course are cybersecurity practitioners who work for ensuring the safety of information systems and network by working on their proper functionality, integrity, authentication, privacy and acceptance. The course will equip the candidate with the necessary tools needed to ensure detection and effective management of cybersecurity threats. Interestingly, this course will also specify roles from help desk manager to Chief Information Officer in ensuring protection of information and network system in order to clarify the responsibilities at each level of hierarchy in the security process.

Prerequisites:

This course has specific requirements which must be met beforehand in order to ensure ease of understanding and application of the content in the course:

• Basic information regarding common assurance safeguards in network environments including firewalls, intrusion prevention systems, and virtual private networks (VPNs).

• Good learning regarding risk management of security threats.

• Basic understanding regarding operating systems for computing environments.

• Recommended 2 years work experience in computer network security technology or a related field.

• Knowledge regarding common assurance safeguards in computing environments including basic authentication and authorization, resource permissions, and anti-malware mechanisms.

• Core knowledge of major TCP/IP networking protocols, including TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP.

• Basic level operations for network environments, such as routing and switching.

• By taking the logical operations courses mentioned below or successfully clearing their exams will enable you to obtain the required skills mentioned above:

• CompTIA® A+®: A Comprehensive Approach (Exams 220-901 and 220-902)

• CompTIA® Network+® (Exam N10-006)

• CompTIA® Security+® (Exam SY0-401)