• Post category:StudyBullet-5
  • Reading time:4 mins read


What you will learn

An explanation of the key differences between malware analysis and incident response

Known malware, online file analysis and tools that can be used to analyse running processes

Unknown malware and how to recognise suspicious files, using heuristic activity detection and vulnerability analysis

Incident prevention methods, including securing removable storage and an explanation of email filtering and analysis tools.

Incident prevention methods, including securing removable storage and an explanation of email filtering and analysis tools.

Description

Over this course, we’ll be covering some of the ways that you can prevent and respond to IT security incidents, such as a ransomware attack, on your organisation’s network.Β Course topics include the following:

*Β An explanation of the key differences between malware analysis and incident response

*Β Known malware, online file analysis and tools that can be used to analyse running processes

* Unknown malware and how to recognise suspicious files, using heuristic activity detection and vulnerability analysis

* Incident prevention methods, including securing removable storage and an explanation of email filtering and analysis tools.


Get Instant Notification of New Courses on our Telegram channel.


* Incident response methods, such as escalation procedures and service priorities.

Note that, in the real world, protecting against and reacting to security incidents is something that is unique to every organisation, taking into account its size and service priorities. For example, a company that hosts some websites internally may focus on getting them back online first, and then move onto getting internal staff back online, or vice versa.

Before making any critical changes to your organisation’s network, it is critical that that this is done in accordance with your company’s policies, as this will ensure that incidents are resolved as smoothly as possible, and with the least amount of downtime and inconvenience to end users.

English
language

Content

Introduction

Introduction
Malware analysis vs incident response

Known malware

Known malware overview
Online file analysis
Analysing processes with resource viewer

Unknown malware

Unknown malware overview
Heuristic activity detection

Incident prevention

Incident prevention overview
Vulnerability analysis
Securing removable storage
Email filtering and analysis

Incident response, escalation & service priorities

Incident response
Escalation procedures
Service priorities