Edu type:
Cursus of training
Associate degree (EQF 5), Bachelor (EQF 6), Master (EQF 7), MBO-4/HAVO/VWO (EQF 4)
Start datum:
20 uur
3 dagen
Meer informatie


Learn how to stop cyberattacks, prioritize incidents, and mitigate the damage.


The course consists of the recorded video lectures and practical sessions with a trainer. You will receive lectures for self-study 2 weeks prior to the course beginning, and will be able to consolidate knowledge during the practical sessions.


The question is not whether you will experience a cyberattack — the question is when. The warning may sound extreme, but it is becoming more and more relevant with every passing day. This is because the cyber threat landscape is evolving rapidly. Criminals are constantly coming up with new tactics, techniques, and procedures (TTPs), which makes it difficult for information security experts and businesses to keep up. In fact, most companies around the world do not have a suitable incident response strategy or team. And when they do, few team members are aware of the latest attack trends and security techniques.


This three-day intensive course is designed to fill such gaps and provide incident responders with the knowledge and tools they need to rapidly and effectively respond to various security incidents.


Key topics covered:

  • Cyber kill-chain and MITRE ATT&CK models
  • Incident response process
  • Critical sources of evidence
  • Data collection techniques
  • Windows artifacts for incident response
  • Linux artifacts for incident response

Skills acquired:

  • Understanding the incident response process
  • Collecting relevant data
  • Analyzing Windows artifacts
  • Analyzing Linux artifacts

Target participants:

  • Incident response enthusiasts
  • Technical specialists with experience in IS
  • Information security specialists
  • SOC/CERT employees


  • A basic understanding of the incident response process
  • Some experience in IS