Cyber incident handling  

Description: Triage and basic incident handling Creating incident handling procedures and testing Large scale incident handling Cooperation with Law Enforcement agencies Identifying and handling cyber-crime traces Incident handling and cooperation during phishing campaign Law enforcement view of computer security incidents Law enforcement needs for evidence analysis Role of (tabletop) exercises in developing incident handling capability Learning outcomes: After completing this course, the student: - is able to establish incident handling team and typical team designs; - manages cyber incidents, preserving needed evidence and chain of evidence; - builds incident management system and manages cooperation between law enforcement and incident handlers; - establishes procedures for evidence and incident management.
Presential
English
Cyber incident handling
English

Funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or HaDEA. Neither the European Union nor the granting authority can be held responsible for them. The statements made herein do not necessarily have the consent or agreement of the ASTRAIOS Consortium. These represent the opinion and findings of the author(s).