[CDP-development] CISA - Understanding Indicators of Compromise (IR108)

Masse, Theresa theresa.masse at cisa.dhs.gov
Thu Mar 3 10:06:46 PST 2022 

FYSA

[file]

Understanding Indicators of Compromise (IR108)

EVENT DETAILS

CISA is proud to offer the cybersecurity awareness webinar, Understanding Indicators of Compromise (IR108) on Tuesday, March 29th from 11 a.m. to noon EDT. We are excited to share this information with stakeholders across the Federal enterprise and nationally.

Major cyber attacks have made headlines for years and the pace of threat activity faced by government and private sector organizations is accelerating. Often, the most damaging attacks reported are traced to Advanced Persistent Threats (APTs): groups of sophisticated hackers who gain entry into an unauthorized system and remain undetected for extended periods of time, allowing them to surveil and gather information, test security, or execute malicious activity without tripping network defenses.

Indicators of Compromise (IOCs) are the digital and informational "clues" that incident responders use to detect, diagnose, halt, and remediate malicious activity in their networks. This webinar provides an overview of IOCs for incident responders and those who work with them, introduces example scenarios and how IOCs can be used to trace activity and piece together a timeline of the threat, and discusses tools and frameworks to help incident responders use IOCs to detect, analyze, respond to, and report cyber threat activity.

Join us to learn the following information and more:

  *   Define IOCs and why tracking, investigating, and reporting IOCs are crucial to enterprise cybersecurity.
  *   Understand how IOCs are used for threat hunting and incident response, different types of indicators, and how to collect different categories of IOCs.
  *   Learn about the MITRE ATT&CK Framework and how it supports the analysis of IOCs, potential threat actors related to the activity and their associated strategies and tactics.
  *   Introduce free CISA cybersecurity tools, services, and resources to help organizations further advance their cybersecurity capabilities.

This webinar is intended for a non-technical audience and beginning incident responders.

EVENT LOGISTICS

  *   Date: Tuesday, March 29, 2022
  *   Time: 11 a.m. - noon EDT
  *   Location: Online via Adobe Connect
  *   CPE Credit: Participants can earn 1 CPE credit for attending this course.
  *   Note: Audio is through Adobe Connect, there is no external dial-in. Closed captioning will be available during this training event.

HOW TO REGISTER

  *   To register for this event, please visit the following link: <https://urldefense.us/v3/__https:/dhsconnect.connectsolutions.com/ad-r1-newcdmdashboard-signup/event/registration.html__;!!BClRuOV5cvtbuNI!RIbe5oWbw0fBIbemJN3mYzIXMN4ln7y43oo970d1Moss5Ti8HrlSxth7uupsj1MeSYiaXFU$>
https://dhsconnect.connectsolutions.com/imr108-march22/event/registration.html<https://urldefense.us/v3/__https:/dhsconnect.connectsolutions.com/imr108-march22/event/registration.html__;!!BClRuOV5cvtbuNI!RIbe5oWbw0fBIbemJN3mYzIXMN4ln7y43oo970d1Moss5Ti8HrlSxth7uupsj1Me9gOqUaA$>
  *   You will receive a confirmation email with the Adobe Connect meeting room link and calendar invitation after your registration is approved.
  *   If you require a reasonable accommodation to fully participate in this virtual event, please contact cyberinsights at cisa.dhs.gov at least five business days prior to the training with the type of support you need.

________________________________

COURSE CATALOG

Visit the Registration tab on our website<https://www.cisa.gov/incident-response-training> to view and register for upcoming events.


Theresa A. Masse
Cyber Security Advisor, Region 10 (Oregon)
Cybersecurity and Infrastructure Security Agency
Department of Homeland Security
Phone: (503) 930-5671
Email: theresa.masse at cisa.dhs.gov<mailto:theresa.masse at cisa.dhs.gov>

[cid:image001.png at 01D82ED2.073567E0]


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220303/da5b7183/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 16152 bytes
Desc: image001.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220303/da5b7183/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 1591030557694.png
Type: application/octet-stream
Size: 118355 bytes
Desc: 1591030557694.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220303/da5b7183/attachment-0001.obj>

More information about the CDP-development mailing list