RSA Cyber Defense Workshop

Document created by Craig Hansen Employee on Feb 8, 2016Last modified by Elizabeth Maloney on May 1, 2017
Version 8Show Document
  • View in full screen mode

ScheduleandRegisterButton

ScheduleOnlyButton

 

 

 

In order to register for a class, you need to first create an EMC account
If you need further assistance, contact us

 

 

Summary

The RSA Cyber Defense Workshop is designed to give participants practical experience as security analysts who work in a Security Operations Center (SOC), Critical Incident Response Center (CIRC) or other critical incident response capacity.

 

Overview

In this classroom-based workshop, participants are immersed in a simulated CIRC environment where they assume different roles and manage the security events that take place over the course of a three-day scenario. Day-to-day security incidents will occur alongside potentially catastrophic activity related to the advanced tactics of determined and persistent adversaries. Each member of the CIRC Team will have to utilize skills and tools in order to detect, contain and eradicate the threat as well as document the incidents for executive review. There is virtually no lecture associated with this workshop; participants learn by doing. This is the perfect opportunity for members of security teams to sharpen their skills related to attacks in a controlled environment assisted by experts. The workshop provides valuable insights for determining the specific skillsets and tools that an organization needs in order to mitigate the most advanced types of attacks against corporate assets.

 

Audience

 

Security analysts, computer forensic investigators, incident responders who have had exposure to malware analysis and want to know more about the tools and techniques associated with gathering and responding to actionable intelligence while acting as a member of a critical incident response team.


Delivery Type
Classroom

 

Duration

3 days

 

Prerequisite Knowledge/Skills

Participation in the RSA Incident Handling & Response training or commensurate experience. Some exposure to malware analysis, incident response, and risk/compliance are beneficial. Participants should have some security operations experience. Some experience with RSA NetWitness Logs and Packets and RSA NetWitness SecOps Manager would be helpful.

 

Prerequisite Knowledge/Skills
Participation in the RSA Incident Handling & Response training or commensurate experience. Some exposure to malware analysis, incident response, and risk/compliance are beneficial. Participants should have some security operations experience. Some experience with RSA NetWitness Logs and Packets and RSA NetWitness SecOps Manager would be helpful.

 

Experience of RSA's Experts

RSA and EMC have a 30-year legacy of working with clients worldwide to deliver security solutions. RSA has leveraged its relationships with industry leaders to give you deep insight into the most current threats and the techniques and tools to mitigate the risk of disclosure of information. This course will empower attendees with that knowledge and give them the opportunity to prove their current skill set and add to it in a meaningful way.

 

Industry tools used in this course include:

       RSA NetWitness Logs and Packets

  • RSA NetWitness SecOps Manager
  • Other open source tools

 

 

Topics Covered

Because this workshop will be completely scenario based, a formal course outline is not applicable. Throughout this workshop, participants will engage in:

  • Malware Analysis
  • Network Analysis
  • Network Forensics
  • Threat Intelligence
  • Incident Triage
  • Executive Presentation
  • Security Operations
  • Team Management
  • Legal, Regulations, & Investigations
  • Open Source and Commercial Tools

 

"… I found the training to be very good. The teamwork, mandatory executive interaction and related reporting were excellent. The training simulated a fast paced real world scenario where we had to work cohesively as a team on a tight analysis schedule."

Incident Response Analyst, Leading Technology Vendor

 

 

ScheduleandRegisterButton

ScheduleOnlyButton

 

 

 

In order to register for a class, you need to first create an EMC account
If you need further assistance, contact us

Attachments

    Outcomes