Cybersecurity professionals require a well-rounded understanding of the tools, processes, and strategies that can be employed to defend their information systems from constantly evolving threats. CyberSec First Responder® (CFR) is a comprehensive certification designed to validate the knowledge and skills required to protect these critical information systems before, during, and after an incident.
The CFR exam is accredited under the ANSI/ISO/IEC 17024 standard and is approved by the U.S. Department of Defense (DoD) to fulfill Directive 8570/8140 requirements.
The CFR-210 version of the CyberSec First Responder examination retired in September 2019. Certifications will no longer be issued for CyberSec First Responder under the retired CFR-210 scheme. All future candidates and current certificants must take and pass the updated exam, CFR-310, in order to hold a valid CyberSec First Responder certification.
This cyber security course is delivered as a blend of eLearning and six 4-hour virtual sessions with a certified instructor.
This cyber security course covers network defense and incident response methods, tactics, and procedures that are in alignment with industry frameworks such as NIST 800-61r2 (Computer Security Incident Handling Guide), US-CERT's National Cyber Incident Response Plan (NCIRP), and Presidential Policy Directive (PPD)-41 on Cyber Incident Coordination. It is ideal for candidates who have been tasked with the responsibility of monitoring and detecting security incidents in information systems and networks, and for executing standardized responses to such incidents. The course introduces tools, tactics, and procedures to manage cybersecurity risks, identify various types of common threats, evaluate the organization's security, collect and analyze cybersecurity intelligence, and remediate and report incidents as they occur. This course provides a comprehensive methodology for individuals responsible for defending the cybersecurity of their organization. This course is designed to assist students in preparing for the CertNexus CyberSec First Responder (Exam CFR-310) certification examination. What you learn and practice in this course can be a significant part of your preparation.
In addition, this course and subsequent certification (CFR-310) meet all requirements for personnel requiring DoD directive 8570.01-M position certification baselines:
Artificial intelligence (AI) and machine learning (ML) have become an essential part of the toolset for many organizations. When used effectively, these tools provide actionable insights that drive critical decisions and enable organizations to create exciting, new, and innovative products and services. This course shows you how to apply various approaches and algorithms to solve business problems through AI and ML, follow a methodical workflow to develop sound solutions, use open source, off-the-shelf tools to develop, test, and deploy those solutions, and ensure that they protect the privacy of users.
In this course, you will understand, assess, and respond to security threats and operate a system and network security analysis platform.
To ensure your success in this course, you should meet the following requirements:
For this course, you will need one Microsoft® Windows Server® 2016 computer and one Microsoft® Windows® 10 computer for each student and for the instructor. Make sure that each computer meets the classroom hardware specifications: Windows Server 2016
Miscellaneous software that is not included in the course data files due to licensing restrictions:
The steps to download these tools are described in the course setup that follows. Note that the URL paths to these downloads may have changed after this course was written. The activities in this course were written to the versions of the software noted previously. If new versions of these tools have been released when you present this course, make sure to test them with their corresponding activities to note any keying discrepancies.
Miscellaneous software that is included in the course data files:
VirtualBox, Wireshark, Snort, and icmpsh are distributed with the course data files under version 2 of the GNU General Public License (GPL). XAMPP is distributed under version 3 of the GNU GPL. SeaMonster is distributed under version 3 of the GNU Lesser General Public License (LGPL). OpenSSH for Windows is distributed with the course data files under a Berkeley Software Distribution (BSD) license. PuTTY is distributed with the course data files under the MIT License.
This cyber security certification is designed primarily for cybersecurity practitioners preparing for or who currently perform job functions related to protecting information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. It is ideal for those roles within federal contracting companies and private sector firms whose mission or strategic objectives require the execution of Defensive Cyber Operations (DCO) or DoD Information Network (DoDIN) operation and incident handling.
This course focuses on the knowledge, ability, and skills necessary to provide for the defense of those information systems in a cybersecurity context, including protection, detection, analysis, investigation, and response processes. In addition, the course ensures that all members of an IT team—regardless of size, rank, or budget—understand their role in the cyber defense, incident response, and incident handling process
|Target Candidate||Individuals with between 3 and 5 years of experience working in a computing environment as part of a CERT/CSIRT/SOC who protect critical information systems before, during, and after an incident.|
Common Job Titles
|Exam Description||The CyberSec First Responder™ exam will certify that the successful candidate has the knowledge, skills, and abilities required to deal with a changing threat landscape and will be able to assess risk and vulnerabilities, acquire data, perform analysis, continuously communicate, determine scope, recommend remediation actions, and accurately report results.|
|Number of Questions||100 questions|
|Item Formats||Multiple Choice/Multiple Response|
|Exam Duration||120 minutes (including 5 minutes for Candidate Agreement and 5 minutes for Pearson VUE tutorial)|
|Exam Options||In person at Pearson VUE test centers|
|Passing Score||70% or 71%, depending on exam form|
|Date:||6, 9, 14, 20, 23, 27 July 2020|
|Location:||Live Virtual Blended ( 11:30am - 3:30pm )|
|Online Price:||AED 0/- + VAT|
Lesson 1: Assessing Information Security Risk
Lesson 2: Analyzing the Threat Landscape
Lesson 3: Analyzing Reconnaissance Threats to Computing and Network Environments
Lesson 4: Analyzing Attacks on Computing and Network Environments
Lesson 5: Analyzing Post-Attack Techniques
Lesson 6: Managing Vulnerabilities in the Organization
Lesson 7: Implementing Penetration Testing to Evaluate Security
Lesson 8: Collecting Cybersecurity Intelligence
Lesson 9: Analyzing Log Data
Lesson 10: Performing Active Asset and Network Analysis
Lesson 11: Responding to Cybersecurity Incidents
Lesson 12: Investigating Cybersecurity Incidents
Appendix A: Mapping Course Content to CyberSec First Responder™ (Exam CFR-310)
Appendix B: Regular Expressions
Appendix C: Security Resources Appendix D: U.S. Department of Defense Operational Security practices