Integrating Cyber Threat Intelligence Cyber Range (IR219)
This skills lab provides cybersecurity professionals with the practical knowledge and hands-on experience needed to develop, implement, integrate, and optimize a strategy for CTI (cyber threat intelligence).
The lab simulates a sophisticated cyber-attack scenario where participants employ a variety of tools to perform hunting operations and establish proactive defense based on CTI. Through case studies, presentations by expert facilitators, demonstrations, and lab exercises, participants will explore the tools and techniques necessary to establish a strategy for CTI implementation, integration, and optimization.
Throughout the course participants will:
- Review open-source threat intelligence advisories to devise proactive defense strategy and perform hunting operations
- Aggregate data from various sources within the cyber range such as SIEM logs, network traffic, and endpoint data to identify patterns and anomalies associated with simulated advanced persistent threat (APT) activity
This exercise is a step-by-step, facilitated experience that uses a keyboard approach to understand these topics in a realistic technical environment.
Approved registrants must attend a mandatory student technical check the day before the training to establish a connection to the course content and lab environment.
EVENT LOGISTICS
- Date: Tuesday, December 10, 2024, Wednesday, December 11, 2024, or Thursday, December 12, 2024
- Time: 9:00 AM EST – 1:00 PM EST
- Location: Online via WebEx
- CPE Credit: Participants can earn 4 CPE credits for attending this course.
- Attendee Requirements: This course requires active participation. Attendees can use government-issued computers or personal computers. A second monitor is recommended.
- Note: Audio is through WebEx; there is no external dial-in.
- Closed captioning (English only) will be available during this training event.
Due to participation requirements, please register no later than 48 hours before the course starts. Cyber Insights will not accept registrations made less than 48 hours before the course start.