EC-Council Certified Incident Handler V2
Course description:
This latest iteration of EC-Council’s Certified Incident Handler (E|CIH) program has been designed and developed in collaboration with cybersecurity and incident handling and response practitioners across the globe.
It is a comprehensive specialist-level program that imparts knowledge and skills that organizations need to effectively handle post breach consequences by reducing the impact of the incident, from both a financial and a reputational perspective.
Following a rigorous development which included a careful Job Task Analysis (JTA) related to incident handling and incident first responder jobs, EC-Council developed a highly interactive, comprehensive, standards-based, intensive 3-day training program and certification that provides a structured approach to learning real-world incident handling and response requirements.
Purpose of the course:
- To enable individuals and organizations with the ability to handle and respond to different types of cybersecurity incidents in a systematic way.
- To ensure that organization can identify, contain, and recover from an attack.
- To reinstate regular operations of the organization as early as possible and mitigate the negative impact on the business operations.
- To be able to draft security policies with efficacy and ensure that the quality of services is maintained at the agreed levels.
- To minimize the loss and after-effects breach of the incident.
- For individuals: To enhance skills on incident handling and boost their employability.
Course objectives:
- Understand the key issues plaguing the information security world
- Learn to combat different types of cybersecurity threats, attack vectors, threat actors and their motives
- Learn the fundamentals of incident management including the signs and costs of an incident
- Understand the fundamentals of vulnerability management, threat assessment, risk management, and incident response automation and orchestration
- Master all incident handling and response best practices, standards, cybersecurity frameworks, laws, acts, and regulations
- Decode the various steps involved in planning an incident handling and response program
- Gain an understanding of the fundamentals of computer forensics and forensic readiness
- Comprehend the importance of the first response procedure including evidence collection, packaging, transportation, storing, data acquisition, volatile and static evidence collection, and evidence analysis
- Understand anti-forensics techniques used by attackers to find cybersecurity incident cover-ups
- Apply the right techniques to different types of cybersecurity incidents in a systematic manner including malware incidents, email security incidents, network security incidents, web application security incidents, cloud security incidents, and insider threat-related incidents
For whom this course is suitable:
- Penetration Testers
- Vulnerability Assessment Auditors
- Risk Assessment Administrators
- Network Administrators
- Application Security Engineers
- Cyber Forensic Investigators/ Analyst and SOC Analyst
- System Administrators/Engineers
- Firewall Administrators and Network Managers/IT Managers
Course Outline:
- Module 01: Introduction to Incident Handling and Response
- Module 02: Incident Handling and Response Process
- Module 03: Forensic Readiness and First Response
- Module 04: Handling and Responding to Malware Incidents
- Module 05: Handling and Responding to Email Security Incidents
- Module 06: Handling and Responding to Network Security Incidents
- Module 07: Handling and Responding to Web Application Security Incidents
- Module 08: Handling and Responding to Cloud Security Incidents
- Module 09: Handling and Responding to Insider Threats
What you will get as part of the course:
– authorized educational literature
– access to practical laboratory work
– a trainer certified by the EC-Council company
– a certificate of completion of official training on the course
Full course description https://www.eccouncil.org/ECIH-v2
*the E|CIH exam can be taken after completing the official E|CIH course
CompTIA Network +
COURSE DESCRIPTION
This course provides a definition and in-depth description of the main modern technologies of computer networks. The main methods of administration, management and troubleshooting of modern networks will also be considered.
THE PURPOSE OF THE COURSE
Teach basic skills in working with network equipment and information security equipment. As a result of this course, students will gain basic practical knowledge on setting up network protocols and security policies
AUDIENCE
engineers partners, customers
COURSE CONTENT
The following topics will be covered in this course:
Basic definitions of OSI and TCP / IP network models
Characteristics of network traffic
Deploy and configure LAN
Configuring IP networks
Deploy and configure routing networks. Basic LAN and WAN routing technologies will be considered
Configuration and monitoring of major ports and protocols
Description of the main network attacks and methods of their elimination and early detection
Deployment and configuration of information security equipment and software
Description of basic methods of authentication and access control
Using remote access methods
Implementation of security policies
DETAILED CONTENT OF THE COURSE
Lesson 1: Explanation of the OSI model and TCP / IP models
Lesson 2: Explain the properties of network traffic
Lesson 3: Installing and configuring dial-up networks
Lesson 4: Configuring IP Networks
Lesson 5: Installing and configuring routed networks
Lesson 6: Configuring and monitoring ports and protocols
Lesson 7: Explaining network applications and storage services
Lesson 8: Monitoring and troubleshooting networks
Lesson 9: Explain network attacks and mitigations
Lesson 10: Installing and Configuring Security Devices
Lesson 11: Explaining authentication and access control
Lesson 12: Deploying and troubleshooting cable solutions
Lesson 13: Implementing and troubleshooting wireless technologies
Lesson 14: Comparing and contrasting WAN technologies
Lesson 15: Using Remote Access Methods
Lesson 16: Defining site policy and best practices
Price: $ 320
Venue: ERC Training Center st. Mark Vovchka, 18-A