IT forensics have become a vital part in handling security incidents, with system administrators often left alone with detection of incidents, initiating an investigation and aiding investigators in the collection of required evidence. Furthermore, many administrators are not trained in their role of forensic investigation and do not receive the necessary guidance before they are thrown in at the deep end.
The GÉANT Learning And Development (GLAD) team is happy to announce the launch of a new online training programme, IT Forensics for System Administrators – Part 2. Building on last year’s popular programme, IT Forensics for System Administrators – Part 2 consists of 5 live online sessions running from 27 April until 30 May 2022.
The first module showed system administrators the basic organisational steps to forensic incident handling and introduced methods and tools to collect the various forms of evidence data. The upcoming second module will focus on the analysis part of the forensic process, using open-source to dissect obfuscated or encoded bits of information, search disk and memory images for indicators of compromise (IOCs), and create super-timelines.
Attendance is open to all GN4-3 participants, NRENs and participating organisations as well as wider CERT community; the programme will be of special interest to system/network administrators.
Register here
For more details about the programme visit the DFN-CERT website: https://www.dfn-cert.de/en/Trainings.html#ITForensicTwo
Please note:
- You only need to register once in order to attend all or selected training sessions from this programme.
- The Zoom link will be sent to participants the week before the first event.
- All sessions will be recorded and recordings published on GÉANT’s YouTube channel.
- You are advised to register even if you cannot attend all sessions so that you will be notified when session recordings become available.
For any enquiries, please contact glad@geant.org
