Powered by Indico
v3.2.9
Providing affordable, state of the art high-quality training to the LEARN R & E organizations' personnel within the LEARN community and equipping the attendees with the knowledge and materials needed to pass their knowledge to safeguard their network. This course is primarily aimed at new and all the end-users who wish to gain a solid understanding of the main aspects of working in an incident handling and response.
Training Hours: 2 hours
Date and Time: 22nd of January 2020 at 10.30 a.m to 12.30 p.m via zoom
Trainers: Dinesh Gunawardena (LEARN-CSIRT), Jamie Gillespie (APNIC)
PROGRAM SCHEDULE
Organizational Module
The organizational module covers how CSIRTs fit within their organizations and includes planning the team, defining its constituency, determining which services to offer, staffing, communicating with external parties, funding, and obtaining management authority.
Technical module
The technical module covers how intruders attack systems and their motivations, how network protocols can be abused, vulnerabilities of operating systems and services, denial-of-service attacks, hiding traces, and information gathering techniques. Includes several practical exercises.
Operational module
The operational module covers the incident handling process from initial reports, through triage, investigation, resolution, closure, to post-analysis. Includes practical exercises and a survey of useful tools.
Legal module
The legal module includes data protection, computer misuse, network monitoring, collection of evidence, and working with law enforcement agencies.
Dinesh Gunawardana