Path icon Learning Paths
Skills

Incident Response

  • Number of Courses7 courses
  • Duration9 hours
  • Skill IQ available Skill IQ

This path covers the knowledge and skills required to operate as an Incident Responder.

 

Additionally, the skills covered directly align to the following CSWF, DCWF and Industry Roles:

Workforce Framework for Cybersecurity (NICE Framework) & DoD Cyber Workforce Framework Roles:

Industry Job Roles:

  • Incident Response Analyst
  • Cyber Incident Responder
  • Incident Response Engineer

 

These courses will take you through a full, adrenaline-filled scenario where the international conglomerate, Globomantics, have reportedly been hit with ransomware! Be prepared to go through the roller-coaster ride of incident response as we assess and analyze the threat and remediate their systems.

This path is for incident responders working the hands-on-keyboard, technical aspects of a reported security incident. The target audience for this path is practitioners at entry level to two years of experience in the field.

Courses in this path

Incident Response

This skill path works through the methodological phases of incident response. These phases consist of:

  • Initial analysis and detection of a security event
  • Collecting data and containment of the threat
  • Full network and host analysis to identify root cause
  • Post incident activity, including remediation and recovery

Incident Response: Detection and Analysis

  • by Aaron Rosenmund
  • 2h 19m Duration
  •  (39)

Incident Response: Network Analysis

  • by Brandon DeVault
  • 1h 10m Duration
  •  (21)

Incident Response: Host Analysis

  • by Aaron Rosenmund
  • 1h 37m Duration
  •  (14)

Incident Response: Containment, Eradication and Recovery

  • by Aaron Rosenmund
  • 1h 6m Duration
  •  (12)

Specialized Digital Forensics and Incident Response

After learning about incident response and recovery, dive into the world of digital forensics! In our advanced Specialized DFIR (Digital Forensics and Incident Response) courses, analysts and incident responders can expand their skillset by learning forensics pertaining to an incident and how to extract IOCs from different environments.

Specialized DFIR: Windows Registry Forensics

  • by Tyler Hudak
  • 1h 10m Duration
  •  (22)

Specialized DFIR: Windows File System and Browser Forensics

  • by Tyler Hudak
  • 54m Duration

Specialized DFIR: Windows Event Log Forensics

  • by Tyler Hudak
  • 38m Duration

Learn with the best

Aaron Rosenmund
Aaron Rosenmund
Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber secur... more
Brandon DeVault
Brandon DeVault
Brandon DeVault is a Security Researcher focused on threat hunting at CrowdStrike. He is also a member of the Florida Air National Guard with a variety of offensive and defensive experience. Prior to joining CrowdStrike, Brandon worked full-time as an author with Pluralsight and at Elastic, creating and delivering security content. He also worked with Special Operations Command, where he had two deployments to Afghanistan on deployable communications teams. His experience spans incident response... more
Tyler Hudak
Tyler Hudak
Tyler Hudak has more than 15 years of extensive real-world experience in incident handling, malware analysis, computer forensics, and information security for multiple Fortune 500 firms. He has spoken and taught at a number of security conferences on the topics of malware analysis, incident response, and penetration testing, and brings his frontl ine experience and proven techniques to bear in his training.

Join our learners and upskill
in leading technologies