- Rūta Jašinskiene
- Elind Sulmina
For the efforts towards strengthening cyber security to be successful, technical teams must be specifically trained on practicalities of incident response. The training course presents a comprehensive overview of cybersecurity teams' issues on a technical level, vulnerability handling, trend/technology watch, security tools, and also issues of artefact handling and forensics. The course is technical in nature, relying heavily on hands-on and practical experience. The most recent threats and vulnerabilities are treated. The training is dedicated to measure the readiness of CSIRT to deal with the most often real-world cases of cyber hands-on scenario-based training security incidents. The course is composed of series of exercises by providing participants with questionnaires and practical assignments on specific types of cyber security incidents. Participants will be provided a set of specific pre-defined real-life incident scenarios. Several different incident handling cases are simulated to students and focused on incident detection and description, information gathering, analysis tools and techniques and incident handling phases by using RTIR (or related) tool. Cyber threat hunting tips are also provided to deeper knowledge in incident handling.