Get up to 20% off courses booked in April!

CertNexus - CyberSec First Responder (CFR)

Duration

Duration:

Only 3 Days

Method

Method:

Classroom / Online / Hybrid

Next date

Next date:

24/6/2024 (Monday)

Overview

On this accelerated 3-day CyberSec First Responder (CFR) course, you'll learn the skills to monitor, detect and execute appropriate responses for IT security incidents - 40% faster than traditional training. With these skills, you'll become the first line of defense against cyber-attacks, boosting your business' existing IT security measures.

You'll be immersed in the curriculum through our unique Lecture | Lab | Review technique, which allows you learn and retain information faster.

Your expert instructor will introduce tools and tactics used to manage cyber security risks, teaching you to identify a range of common threats and how to collect and analyse cyber security intelligence. You'll learn how to:

  • Assess information security risk, attacks and post-attacks in computing and network environments.
  • Analyse the cyber security threat landscape and evaluate the organisation's security posture within a risk management framework
  • Analyse reconnaissance threats to computing and network environments.
  • Collect cybersecurity intelligence.
  • Analyse data collected from security and event logs.
  • Perform active analysis on assets and networks.
  • Investigate and respond to cyber security incidents.

During the course, you'll prepare for and sit the CyberSec First Responder CFR-210 exam, covered by your Certification Guarantee.

If you're a cyber security practitioner responsible for protecting information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation, this course is ideal for you. This course is also suitable for those looking to fulfill DoD directive 8570.01 for information assurance (IA) training.

See prices now to find out how much you could save when you train at twice the speed.

 See prices

Benefits

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online courses
  2. You'll be certified fast. With us, you’ll be trained in record time
  3. Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
  4. Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9 am – 5 pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day of quality learning time, with your instructor
  6. You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

 Free Practice Test

Curriculum

Lesson 1: Assessing Information Security Risk

  • Identify the Importance of Risk Management
  • Assess Risk
  • Mitigate Risk
  • Integrate Documentation into Risk Management

Lesson 2: Analysing the Threat Landscape

  • Classify Threats and Threat Profiles
  • Perform Ongoing Threat Research

Lesson 3: Analysing Reconnaissance Threats to Computing and Network Environments

  • Implement Threat Modeling
  • Assess the Impact of Reconnaissance Incidents
  • Assess the Impact of Social Engineering

Lesson 4: Analysing Attacks on Computing and Network Environments

  • Assess the Impact of System Hacking Attacks
  • Assess the Impact of Web-Based Attacks
  • Assess the Impact of Malware
  • Assess the Impact of Hijacking and Impersonation Attacks
  • Assess the Impact of DoS Incidents
  • Assess the Impact of Threats to Mobile Security
  • Assess the Impact of Threats to Cloud Security

Lesson 5: Analysing Post-Attack Techniques

  • Assess Command and Control Techniques
  • Assess Persistence Techniques: Assess Lateral Movement and Pivoting Techniques
  • Assess Data Exfiltration Techniques
  • Assess Anti-Forensics Techniques

Lesson 6: Evaluating the Organisation’s Security Posture

  • Conduct Vulnerability Assessments
  • Conduct Penetration Tests on Network Assets
  • Follow Up on Penetration Testing

Lesson 7: Collecting Cybersecurity Intelligence

  • Deploy a Security Intelligence Collection and Analysis Platform
  • Collect Data from Network-Based Intelligence Sources
  • Collect Data from Host-Based Intelligence Sources

Lesson 8: Analysing Log Data

  • Use Common Tools to Analyse Logs
  • Use SIEM Tools for Analysis
  • Parse Log Files with Regular Expressions

Lesson 9: Performing Active Asset and Network Analysis

  • Analyse Incidents with Windows-Based Tools
  • Analyse Incidents with Linux-Based Tools
  • Analyse Malware
  • Analyse Indicators of Compromise

Lesson 10: Responding to Cybersecurity Incidents

  • Deploy an Incident Handling and Response Architecture
  • Mitigate Incidents
  • Prepare for Forensic Investigation as a CSIRT

Lesson 11: Investigating Cybersecurity Incidents

  • Apply a Forensic Investigation Plan
  • Securely Collect and Analyse Electronic Evidence
  • Follow Up on the Results of an Investigation

Appendix A: Mapping Course Content to CyberSec First Responder (Exam CFR-210)
Appendix B: List of Security Resources
Appendix C: U.S. Department of Defense Operational Security Practices

Exam Track

You'll sit the following exam at the Firebrand Training Centre, covered by your Certification Guarantee:

  • Exam CFR-210: CyberSec First Responder: Threat Detection and Response
    • Exam format: multiple-choice
    • Exam duration: 120 questions
    • Number of questions: 100

What's Included

Included:

  • Official exam
  • Official and comprehensive course materials

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Prerequisites

It is recommended your possess the following knowledge, skills, and experience prior to the course:

  • At least two years of experience in computer network security technology or a related field.
  • The ability to recognize information security vulnerabilities and threats in the context of risk management.
  • A working knowledge of common computer operating systems.
  • A working knowledge of the concepts and operational frameworks of common assurance safeguards in computing environments (including, but not limited to: basic authentication and authorization, resource permissions, and anti-malware mechanisms).
  • A working knowledge of common networking concepts, such as routing and switching.
  • A working knowledge of the concepts and operational frameworks of common assurance safeguards in network environments (including, but not limited to: firewalls, intrusion prevention systems [IPSs], and virtual private networks [VPNs]).

You can achieve the level of skill and knowledge required by attending the following courses:

  • CompTIA A+
  • CompTIA Network+
  • CompTIA Security+

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.

Reviews

Here's the Firebrand Training review section. Since 2001 we've trained exactly 134561 students and asked them all to review our Accelerated Learning. Currently, 96.41% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.


"It's a third course I have with this instructor. His classes are fast-paced and well structured."
Anonymous. (8/1/2024 (Monday) to 10/1/2024 (Wednesday))

"It's a third course I have with this instructor. His classes are fast-paced and well structured."
Anonymous. (8/1/2024 (Monday) to 10/1/2024 (Wednesday))

"A super engaging and pleasant lecturer."
Michael White, Lloyds Banking Group. (10/7/2023 (Monday) to 12/7/2023 (Wednesday))

"A super engaging and pleasant lecturer."
Michael White, Lloyds Banking Group. (10/7/2023 (Monday) to 12/7/2023 (Wednesday))

"Facility is excellent. Training delivery and interaction with the trainer also excellent and the material is straightforward to follow with a good mix of theory and practical."
Mark Jeffery, Lloyds Banking Group. (10/7/2023 (Monday) to 12/7/2023 (Wednesday))

Course Dates

Start

Finish

Status

Location

Book now

19/2/2024 (Monday)

21/2/2024 (Wednesday)

Finished - Leave feedback

-

 

24/6/2024 (Monday)

26/6/2024 (Wednesday)

Wait list

Nationwide

 

5/8/2024 (Monday)

7/8/2024 (Wednesday)

Limited availability

Nationwide

 

16/9/2024 (Monday)

18/9/2024 (Wednesday)

Open

Nationwide

 

28/10/2024 (Monday)

30/10/2024 (Wednesday)

Open

Nationwide

 

9/12/2024 (Monday)

11/12/2024 (Wednesday)

Open

Nationwide

 

Latest Reviews from our students

Trustpilot