Cybersecurity: Incident Handling and Response (IHR)
DHS-Certified, Course Catalog #PER 253
The purpose of the CDI SENTINEL Incident Handling and Response (IHR) class is to educate and train technical personnel in the proper actions and investigative procedures for dealing with critical incidents involving network infrastructure.
IHR is designed primarily for technical personnel from public safety, law enforcement, state and local government, public utilities, colleges and universities, and health care providers. Depending on classroom space, consideration will also be given to other individuals working within agencies and organizations considered as a part of our nation's critical infrastructures.
Participants are taught techniques to trace intrusions back to their source, methods for dealing with malicious computer viruses and Trojans, and what governmental agencies can provide as assistance and resources. As part of a class exercise, real world examples and problems are stored on servers for the participants to investigate in order to acquire real-world, hands-on training. Some of the subjects for this class include log collection and analysis, network forensics, IP tracing, technology laws, network security, and digital interception.
Some of the objectives of IHR are listed below:
-
Understanding of the detailed technical concepts regarding network infrastructure effective policies and procedures for network security and cyberterrorism mitigation.
-
Understanding of the technical concepts and importance of proper management strategies specifically regarding network security and security management to handle a cyberterrorism event.
-
Understanding of the technical concepts regarding system monitoring and auditing procedures for network security, investigation, and cyberterrorism response.
-
Understanding of the ever-changing potential risks regarding network security, information protection, and infrastructure defense.