This certificate is for computer security incident response team (CSIRT) technical personnel. The first course in the certificate provides a basic introduction to the main incident handling tasks and critical thinking skills that will help an incident handler perform their job. The second course then addresses commonly used and emerging attacks that are targeted against a variety of operating systems and architectures. Ultimately, this certificate is designed to provide insight into the type and nature of work that an incident handler may perform. It will provide an overview of the incident handling arena, including CSIRT services, intruder threats, the nature of incident response activities, and the steps that incident handlers can take in response to system compromises at the privileged level.
The courses incorporate interactive construction, facilitated discussions, practical group exercises, and role playing. Participants must complete the following courses to earn this certificate:
The required courses are also part of the curriculum for the CERT-Certified Incident Handler Certification.