Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

CERT Certificate in Digital Forensics

In today's networked world, it is essential for system and network administrators to understand the fundamental areas and the major issues in computer forensics. Knowledgeable first responders apply good forensic practices to routine administrative procedures and alert verification, and know how routine actions can adversely affect the forensic value of data. This awareness will greatly enhance system and network administrators' effectiveness when responding to security alerts and other routine matters.

The CERT Certificate in Digital Forensics is designed to familiarize experienced system and network computer professionals with the essential elements of digital forensics and build on their existing technical skill set. Completion of this Professional Certificate will prepare administrators to approach both routine and unusual events in a systematic forensic manner.

The CERT Certificate in Digital Forensics is a Professional Certificate program that includes two (2) eLearning courses. Upon registering for this CERT Certificate, you will receive access to both the Introduction to Computer Forensics course and Advanced Digital Forensics course:

Introduction to Computer Forensics

Computer forensics is the convergence of computer science and law that governs the collection and analysis of data about computer systems and network connections. This course teaches about the tasks, processes, and technologies to identify, collect and preserve, and analyze data so that it can be used in a judiciary setting. This eLearning course contains one (1) hour and 40 minutes of video instruction that may be studied incrementally.

Advanced Digital Forensics

The Advanced Digital Forensics focuses on the entire investigative process, from the very beginning through the conclusion and determination of 'who did it.' This course focuses on building your skills to improve your ability to piece together the various components of the digital investigation. Through the use of a simulated lab environment, you will refine your investigative skills by responding to a realistic scenario from the very awareness of a suspected incident to the ultimate conclusion. The eLearning course contains five (5) hours of video instruction and five (5) active lab sessions that may be studied incrementally.

Who should attend?

Professionals involved in the collection, storage, and analysis of computer systems and network data, including

  • Digital Forensics
  • Systems Security Analysis
  • Incident Response Team

Topics

Introduction to Computer Forensics

  • Computer Forensics Process
  • Computer Forensics Following the Process
    •   On-Site Encryption, Memory, Verification
    •   Analysis
    •   Report Findings
    •   Data Preservation
  • Computer Forensics Laws

Advanced Digital Forensics

  • Acquisition
  • Windows Live Response and Evidence Collection
  • Network Log and Traffic Analysis
  • Memory Analysis
  • Volatility
  • Forensic Analysis of Hard Disk Artifacts
  • The Suspect

Objectives

At the completion of this Professional Certificate program, learners will be able to:

  • Understand both the importance and the processes necessary to handle data so as to insure its admissibility in a court of law.
  • Develop an investigative process for the digital forensic investigation
  • Understand methods of focusing investigations through analysis of multiple evidence sources
  • Effectively prepare for incident response of both victim and suspect systems, including understanding the important of network reconnaissance and network traffic analysis
  • Identify sources of evidentiary value in various evidence sources including network logs, network traffic, volatile data and through disk forensics
  • Identify common areas of malicious software activity and characteristics of various types of malicious software files
  • Confidently perform live response in intrusion investigation scenarios

Prerequisites

Some familiarity with digital investigations and digital forensics is recommended.

To use CERT STEPfwd effectively, you need the following:

  • Web browsers: Internet Explorer 7+ or Firefox 3+
  • Adobe Flash version 10+ (for Lecture and Demo access)
  • JRE Version 6+ (for lab access)
  • Computer system and network settings that allow access to streaming video from internet sources
  • Minimum client resolution of 1280x1024 to enable proper Video and Lab Player display
  • Internet connection of 384 Kbps or greater (to sustain downloads with no more than 230 ms of latency).

Materials

Once registered, learners will be granted 24-hour-a-day access to the course material for 12 months.

Learners can proceed through the course at their convenience and can review and repeat individual sections as often as needed.

Each course provides video-recorded training sessions that were presented by SEI CERT instructors to a classroom of students representing a variety of industries. Instructor demonstrations included with the course explore and reinforce the concepts taught and how they can be successfully applied.

Introduction to Computer Forensics

  • 5 video training sessions with transcripts

Advanced Digital Forensics

  • 5 video training sessions with transcripts
  • 5 active online exercises

A copy of course slides is available to download.

Schedule

Learners will have 12 months to complete both courses. Upon completing all elements of each course, the learner is awarded an electronic certificate of course completion. Upon completing both courses, the learner is awarded the CERT Certificate in Digital Forensics.




Training courses provided by the SEI are not academic courses for academic credit toward a degree. Any certificates provided are evidence of the completion of the courses and are not official academic credentials.

Course Details

Course Fees [USD]

eLearning: $850

eLearning

This self-paced course is available online via the SEI Learning Portal.

 

If you wish to purchase this course for a group of learners, please email course-info@sei.cmu.edu or telephone at +1 412-268-7622 for group rate details.

For More Information

E-mail: course-info@sei.cmu.edu
Phone: 412-268-7622