What is Blue Team Training? Blue Team Training provides a hands-on opportunity for system administrators and interested users to gain experience in identifying and deflecting attacks in a secure environment.
We are happy to announce that the next Blue Team training session will take place online on 18 July (13.00 – 16:30 CEST) and will be led by Klaus Möller, Stefan Kelm and Tobias Dussa from DFN-CERT.
According to our security specialists, the Blue Team Training takes “IT Security for System Administrators” to a new level. Why? This new security training, unlike other more theoretical training, aims to provide participants with practical and hands-on experience of some basic tasks in intrusion detection and countermeasures.
What will happen on the day?
After a brief introduction, participants will be given a series of challenges that task them to find evidence for malicious activity on “their” servers by searching the central logs for indicators of such activities. The challenges are designed to resemble a realistic sequence of events as it would occur in real life, so that the individual stages of a successful attack can be seen. After each challenge, there will be a discussion on the traces of evidence and possible countermeasures to enable participants to be on the same page again for the next step of the attack.
Who should attend?
This training is primarily designed for system and network administrators with limited experience of IT Forensics, it is not recommended for highly experienced professionals. Participants from European NRENs and their end users are welcome.
Would you like want to find out more? Visit the GÉANT Security website.