# CyberSec First Responder® (CFR) Certification Training Course (Self-Paced) Canonical URL: ## Overview Gain a broad view of how to respond to a cybersecurity incident while preparing for the CyberSec First Responder certification. This self-study course includes the CFR eLearning, test prep guide, labs, and exam voucher. CFR covers network defense and incident response methods, tactics, and procedures that are in alignment with industry frameworks such as NIST 800-61r2 (Computer Security Incident Handling Guide), US-CERT's National Cyber Incident Response Plan (NCIRP), and Presidential Policy Directive (PPD)-41 on Cyber Incident Coordination, NIST 800.171r2 (Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations). The course introduces tools, tactics, and procedures to manage cybersecurity risks, defend cybersecurity assets, identify various types of common threats, evaluate the organization's security, collect and analyze cybersecurity intelligence, and remediate and report incidents as they occur. This course provides a comprehensive methodology for individuals responsible for defending the cybersecurity of their organization. ## What you'll learn - Assess cybersecurity risks to the organization. - Analyze the threat landscape. - Analyze various reconnaissance threats and attacks on computing and network environments. - Analyze various post-attack techniques. - Assess the organization's security posture through auditing, vulnerability management, and penetration testing. - Collect cybersecurity intelligence from various network-based and host-based sources. - Analyze log data to reveal evidence of threats and incidents. - Perform active asset and network analysis to detect incidents. - Respond to cybersecurity incidents using containment, mitigation, and recovery tactics. - Investigate cybersecurity incidents using forensic analysis techniques. ## Prerequisites Students should have prior experience with network and system security fundamentals, basic risk assessment practices, and familiarity with common cybersecurity threats, as well as skills in using security tools for monitoring, analysis, or incident response. ## Curriculum #### Module 1: Assessing Cybersecurity Risk - Identify the importance of risk management - Assess risk in the organization's environment - Implement strategies to mitigate risks - Integrate documentation into the risk management process #### Module 2: Analyzing the Threat Landscape - Classify various cybersecurity threats - Analyze trends that affect an organization’s security posture #### Module 3: Analyzing Reconnaissance Threats - Implement threat modeling techniques - Assess the impact of reconnaissance on the organization - Understand the effects of social engineering attacks #### Module 4: Analyzing Attacks on Computing and Network Environments - Assess system hacking and web-based attack impacts - Evaluate the impact of malware, hijacking, and impersonation attacks - Understand the implications of DoS incidents - Analyze threats to mobile and cloud security #### Module 5: Analyzing Post-Attack Techniques - Examine command and control techniques used by attackers - Evaluate persistence, lateral movement, and pivoting techniques - Analyze data exfiltration and anti-forensics techniques #### Module 6: Assessing the Organization's Security Posture - Implement cybersecurity auditing practices - Develop and execute a vulnerability management plan - Conduct penetration testing #### Module 7: Collecting Cybersecurity Intelligence - Deploy a security intelligence collection and analysis platform - Collect data from network-based and host-based intelligence sources #### Module 8: Analyzing Log Data - Use common tools to analyze log data - Utilize SIEM tools for analysis #### Module 9: Performing Active Asset and Network Analysis - Analyze incidents with Windows-based and Linux-based tools - Investigate indicators of compromise #### Module 10: Responding to Cybersecurity Incidents - Deploy incident handling and response architecture - Mitigate cybersecurity incidents effectively - Hand over incident information for forensic investigation #### Module 11: Investigating Cybersecurity Incidents - Apply a forensic investigation plan - Securely collect and analyze electronic evidence - Follow up on investigation results ## Instructors ### Bruce Gay — Instructor Bruce is an engaging trainers and program manager who brings 25+ years practical experience to deliver effective and experiential training to students. Able to engage adult learners with a range of backgrounds and professional experiences. Successful at building effective stakeholder relationships and coordinating multi-disciplinary teams for solution delivery. Bruce has over 25 years of project and program management experience across multiple industries. He has a Masters degree from The George Washington University and a B.A. from the University of North Carolina Chapel Hill. Bruce currently runs his own freelance training and consulting business, helping project managers and team leaders improve their business skills, become better leaders, and achieve professional greatness. Bruce is a well-received speaker in the areas of design thinking, project management, cross-team collaboration, and AI tools for projects, and has presented at regional and international conferences. ## Pricing **Tuition:** $1099