Name: N2K Cloud IR | Training Course
SKU: 623156
Price: 400.00 USD
Availability: InStock

N2K Cloud IR | Training Course

Who should take the N2K Cloud IR course?

Incident Responders or Forensics Analysts
Cybersecurity Analysts
Cyber Incident Response Analysts
- Current IR Security Professionals: Those who want to refamiliarize themselves with AWS/Azure incident response processes and techniques.
- New IR Security Professionals: Those who need an introduction to IR in the cloud along with exposure to the AWS/Azure platforms.
- Security Management: Those who want to familiarize themselves with Cloud IR concepts and be more fluent in Cloud IR literacy.

Looking for training for a team? Connect with our sales team for enterprise offers.

Cloud IR

Equip yourself with essential skills to improve response capabilities and forensics within the cloud.

Course Overview

Over the last decade, the rise of cloud services has significantly changed the role and requirements of Incident Response (IR) teams. The shift from on-prem to cloud environments– oftentimes using multiple cloud providers simultaneously–adds complexity to managing data volume and accessibility in tandem with mitigating evolving cyber threats. Today’s incident responders require specialized security skills that apply foundational IR concepts and techniques within respective cloud domains.

CyberVista’s Cloud IR course is a four-hour, 100% online program designed to introduce and familiarize security professionals with the requisite cloud incident response functions and capabilities. This course will review Incident Response as a function within the cloud environment. Practitioners will work their way through both Amazon Web Services (AWS) and Microsoft Azure environments while learning about further cloud concepts and technologies. Lastly, this course will cover the ELK stack and the importance it plays within IR functions in the cloud.

4 hrs of On-Demand Video Lessons
15 Question Diagnostic Exam
15 Question Final Exam
20 Knowledge Check Questions
Hands-On Lab Exercises
Live Online Session (Optional)
Tool and Shortcut Handouts
Performance Tracker

Prerequisites

It is recommended that participants have at minimum a Security+ certification or have completed CyberVista’s Cloud SOC course.

Relevant Training

Following the Cloud IR course, practitioners can take Critical Knowledge: Incident Response for further training.

Course Outline

Domain 1: Incident Response in the Cloud

This domain covers an overview of the incident response process and the roles and responsibilities of the IR team in a cloud environment.

Incident response overview
Roles and responsibilities

Domain 2: Forensics in AWS

This domain covers the processes and techniques used when conducting forensics on the AWS platform. Additionally, we cover how evidence is collected and the impact on security presented by containers and databases.

AWS forensics VMs
Evidence collection
Containers
Databases

Domain 3: Forensics in Azure

This domain covers the processes and techniques used when conducting forensics in the Azure platform. We cover imaging techniques and Azure tools that help facilitate IR investigations.

Cloud imaging
Azure IR investigations
Azure tools

Domain 4: ELK Stack in IR

This domain covers an overview of the ELK Stack, the projects that comprise it, and example demos of the ELK Stack in use.

ELK Stack overview
ELK Stack demos

N2K Cloud IR | Training Course