Get in Touch

Course Outline

Introduction to Incident Handling and Response

  • Key Information Security Concepts
  • Understanding Security Threats and Attack Vectors
  • Defining Security Incidents
  • Incident Management Overview
  • Vulnerability Management Overview
  • Threat Assessment Overview
  • Risk Management Fundamentals
  • Incident Response Automation and Orchestration
  • Best Practices for Incident Handling and Response
  • Standards Overview
  • Cybersecurity Frameworks Overview
  • Legal Considerations in Incident Handling
  • Legal Compliance in Incident Handling

Incident Handling and Response Process

  • IH&R Process Overview
  • Step 1: Preparation for Incident Handling and Response
  • Step 2: Incident Recording and Assignment
  • Step 3: Incident Triage
  • Step 4: Notification
  • Step 5: Containment
  • Step 6: Evidence Gathering and Forensics Analysis
  • Step 7: Eradication
  • Step 8: Recovery
  • Step 9: Post-Incident Activities

Forensic Readiness and First Response

  • Introduction to Computer Forensics
  • Forensic Readiness Overview
  • First Response Overview
  • Digital Evidence Overview
  • Principles of Digital Evidence Collection
  • Evidence Collection Procedures
  • Evidence Security Measures
  • Data Acquisition Overview
  • Volatile Evidence Collection
  • Static Evidence Collection
  • Evidence Analysis Techniques
  • Anti-Forensics Overview

Handling and Response to Malware Incidents

  • Malware Incident Response Overview
  • Preparation for Handling Malware Incidents
  • Detecting Malware Incidents
  • Containment of Malware Incidents
  • Eradication of Malware Incidents
  • Recovery after Malware Incidents
  • Guidelines for Preventing Malware Incidents

Handling and Responding to Email Security Incidents

  • Email Security Incidents Overview
  • Preparation for Handling Email Security Incidents
  • Detection and Containment of Email Security Incidents
  • Eradication of Email Security Incidents
  • Recovery after Email Security Incidents

Handling and Responding to Network Security Incidents

  • Network Security Incidents Overview
  • Preparation for Handling Network Security Incidents
  • Detection and Validation of Network Security Incidents
  • Handling Unauthorized Access Incidents
  • Handling Inappropriate Usage Incidents
  • Handling Denial-of-Service Incidents
  • Handling Wireless Network Security Incidents

Handling and Responding to Web Application Security Incidents

  • Web Application Incident Handling Overview
  • Web Application Security Threats and Attacks
  • Preparation to Handle Web Application Security Incidents
  • Detecting and Analyzing Web Application Security Incidents
  • Containment of Web Application Security Incidents
  • Eradication of Web Application Security Incidents
  • Recovery from Web Application Security Incidents
  • Best Practices for Securing Web Applications

Handling and Responding to Cloud Security Incidents

  • Cloud Computing Concepts
  • Cloud Security Incident Handling Overview
  • Cloud Security Threats and Attacks
  • Preparation for Handling Cloud Security Incidents
  • Detecting and Analyzing Cloud Security Incidents
  • Containment of Cloud Security Incidents
  • Eradication of Cloud Security Incidents
  • Recovering from Cloud Security Incidents
  • Best Practices Against Cloud-based Incidents

Handling and Responding to Insider Threats

  • Insider Threats Introduction
  • Preparation for Handling Insider Threats
  • Detecting and Analyzing Insider Threats
  • Containment of Insider Threats
  • Eradication of Insider Threats
  • Recovery after Insider Attacks
  • Best Practices Against Insider Threats

Requirements

a:0:{}
 21 Hours

Need help picking the right course?
uzbekistan@nobleprog.com or +919818060888

Testimonials (2)

The really lot of extra tools that was mentioned and the real life examples form Mane's experience.

Tamas Adam - Ericsson
Course - Certified Ethical Hacker CEH v.13 AI

Instructor delivery of information; At the end of the day it was Gaurav who pulled off this topic focusing on building strong fundamentals and devising a methodology to be retained with us

Raheal Akhtar - Dubai Government Human Resources Department
Course - Certified Ethical Hacker

Related Courses

Certified Chief Information Security Officer (CCISO)

 35 Hours

The EC-Council’s CCISO Program has certified leading information security professionals around the world. A core group of high-level information security executives, the CCISO Advisory Board, contributed by forming the foundation of the program and outlining the content that would be covered by the exam, body of knowledge, and training. Some members of the Board contributed as authors, others as exam writers, others as quality assurance checks, and still others as trainers. Each segment of the program was developed with the aspiring CISO in mind and looks to transfer the knowledge of seasoned professionals to the next generation in the areas that are most critical in the development and maintenance of a successful information security program.

The Certified CISO (CCISO) program is the first of its kind training and certification program aimed at producing top-level information security executives. The CCISO does not focus solely on technical knowledge but on the application of information security management principles from an executive management point of view. The program was developed by sitting CISOs for current and aspiring CISOs.

Read more...

Certified Ethical Hacker CEH v.13 AI

 35 Hours

The Certified Ethical Hacking (C|EH® v13 AI) program is a distinctive and specialized training initiative designed to equip you with comprehensive knowledge of ethical hacking. Through practical training, dedicated labs, assessments, mock engagement exercises, and a global hacking competition, you will gain the most sought-after skills necessary to excel in the cybersecurity sector.

This course is accredited by EC-Council and delivered by an authorized trainer using certified materials within an accredited training environment.

This is the official Certified Ethical Hacker training course designed to prepare participants for the Certified Ethical Hacker 312-50 Exam.

Read more...

CEH - Certified Ethical Hacker v12

 35 Hours

The CEH program explores a broad spectrum of subjects centered on the Tactics, Techniques, and Procedures (TTPs) essential for a tactical cybersecurity professional. By focusing on the entire kill-chain process, CEH addresses various stages, including foot printing and reconnaissance, scanning, gaining access, maintaining access, and erading detection. This five-phase ethical hacking methodology is applicable to diverse scenarios, encompassing traditional on-premises networks, cloud environments, hybrid setups, and IoT systems across different topologies and application landscapes. Students will master an array of tools and techniques throughout this evaluation process, while also understanding how malicious actors leverage these same TTPs to breach organizational defenses.

Read more...

Certified Penetration Testing Professional - CPENT

 35 Hours

The Certified Penetration Testing Professional (CPENT) certification is a globally recognized validation of an individual's knowledge and skills in the field of penetration testing or ethical hacking. CPENT-certified professionals demonstrate their ability to identify, assess, and manage security vulnerabilities within network infrastructure. The certification requires mastery of penetration testing methodologies, a solid understanding of legal and regulatory concerns, and technical knowledge of attack vectors and countermeasures. Industries often seek CPENT-certified professionals to protect their systems from malicious intruders. Thus, the CPENT certification serves as a reliable assurance of a candidate's expert capability in securing networks and systems, which is essential in a constantly evolving cybersecurity landscape.

Read more...

EC-Council Certified DevSecOps Engineer (ECDE)

 28 Hours

EC-Council Certified DevSecOps Engineer (ECDE) is a practical, hands-on course designed to equip professionals with the skills needed to integrate security seamlessly across the entire DevOps lifecycle, ensuring secure software development from initial planning through to deployment.

This instructor-led, live training (available online or on-site) is tailored for intermediate-level software and DevOps professionals who aim to embed security practices into their CI/CD pipelines, guaranteeing secure and compliant code delivery.

By the conclusion of this training, participants will be able to:

  • Grasp the core principles and best practices of DevSecOps.
  • Secure every stage of the CI/CD pipeline using automated tools.
  • Implement secure coding practices and conduct vulnerability scanning.
  • Prepare effectively for the ECDE certification through practical labs and comprehensive review sessions.

Course Format

  • Interactive lectures and group discussions.
  • Hands-on application of DevSecOps tools within simulated pipelines.
  • Guided exercises focused on secure development and deployment strategies.

Course Customization Options

  • To request a customized version of this course tailored to your team's specific workflows or toolchain, please contact us to make arrangements.
Read more...

EC-COUNCIL CERTIFIED INCIDENT HANDLER (ECIH)

 21 Hours

It is a comprehensive specialist-level program that imparts knowledge and skills on how organizations can effectively manage post-breach consequences by reducing the impact of the incident, both financially and reputationally. Learning objectives are emphasized through practical learning, with 40% of this course covering hands-on experience of the latest incident handling and response tools, techniques, methodologies, frameworks, etc.

Read more...

Ethical Hacking and Countermeasures

 35 Hours

Description:

This course immerses students in an interactive learning environment where they learn to scan, test, exploit, and secure their own systems. The highly practical, lab-based setting provides each participant with in-depth knowledge and hands-on experience with essential modern security systems. The journey begins with understanding how perimeter defenses function, followed by guided activities on scanning and attacking personal networks—ensuring no actual network infrastructure is compromised. Students then explore how attackers escalate privileges and discover the steps necessary to fortify systems against such threats. Additional topics include Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, and Virus Creation.

Target Audience:

This course is highly beneficial for security officers, auditors, security professionals, site administrators, and anyone responsible for maintaining the integrity of network infrastructure.

Read more...

Threat Hunting

 21 Hours

Course Format

  • Interactive lectures and discussions.
  • Extensive exercises and practical activities.
  • Hands-on implementation within a live-lab environment.

Options for Customizing the Course

  • For personalized training options, please reach out to us to make arrangements.
Read more...

Related Categories

EC-Council
EC-Council