Jun 15, 2024  
2023-2024 Undergraduate Bulletin 
    
2023-2024 Undergraduate Bulletin [ARCHIVED CATALOG]

CS 3341 - Incident Response with Threat Intelligence (3)


When Offered: On Demand
The course addresses the emerging cyber threat landscapes and trends of future cyberattacks. In order to provide security of digital assets and infrastructures, it is important to understand how cyber attacks can happen and investigate them thoroughly. With the increase in cyber threats, Incident Response has been a common practice among organizations and/or security teams to secure their perimeters and become more resilient and proactive during a cyberattack. The course will highlight the basic concepts of Incident Response (IR), profiling threat actors based on their footprints, introducing Cyber Kill ChainTM to better understand attack TTPs (technique, tactics, procedures), familiarize students with current practices of threat intelligence, threat hunting, and SOAR (Security Orchestration, Automation, and Response) capabilities for enhancing digital assets’ and infrastructures’ security. Students will also learn to use analytics and detection engineering tools and techniques in Cyber Threat Incident Response. Lastly, there will be a brief introduction of cyber deception strategies to detect advanced persistent threats (APTs) and deceive them. There will be hands-on lab exercises for students to get experiential learning experience from this course.
Prerequisite:  CS 2440  or equivalent with a minimum grade of “C” (2.0).