Academic Catalog

Advanced Cyber Incident Responder Certificate

certificate Info at a Glance
Type
Certificate
Estimated # of Quarters
This certificate is approximately 2 quarters long, depending on the time students need to satisfactorily complete all graduation requirements.
Admission Dates
Summer and winter quarters.
Prerequisites
Students should have two to three years’ experience as a computer and/or network administrator or instructor permission.

This certificate is designed to upgrade junior system administrator professional’s skills to begin a career as an Advanced Cyber Incident Responder in an enterprise environment.  An Advanced Cyber Incident Responder (ACIR) performs a wide range of planning, investigation, analysis, research, documentation, reporting, recovery, and support tasks required to respond to a cyber incident.  The ACIR may only be tasked to provide incident advice or have responsibility for completely restoring system functionality and data integrity.  Students will complete ACIR 200, 210, 220, and 230 in a hybrid learning environment.  Lectures, reading, exercises, and video demonstrations are all completed online.  Students will typically spend 3 or more hours outside of the classroom doing online learning for every hour spent in the classroom.  Students will spend their classroom time performing / demonstrating the hands-on skills that they learned online. 

Certificate Requirements

Course NumberClass TitleCredits
ACIR 200Introduction to Cyber Incident Response3
ACIR 210Response Planning and Network Protection4
ACIR 220Weaponized Malware and Network Attack Forensics3
ACIR 230Recovery Analysis and Report Writing4
 Technical Credits14

Introduction to Cyber Incident Response

Item #
ACIR 200
Total Credits
3

Introduces basic concepts of Cyber Incident Response, identify what an incident response team is, selection of team members, and skills needed as members of an incident response team.

Prerequisites
Prior to enrollments it is advised that prospective student should have two to three years of experience in Computer and Network Administration, Cyber Security, and an instructor(s) interview/permission.
CLOSE

Response Planning and Network Protection

Item #
ACIR 210
Total Credits
4

Students will develop a strong course of action for Incident response, identify major decision points, and identify acceptable methods. Help Management and the Incident Response team develop effective mitigation strategies, identify a defensive network posture, and determine acceptable risks to computers, networks and networked devices.

Prerequisites
Successful completion or concurrent enrollment in ACIR 200 (Introduction to Cyber Incident Responder) prior to enrolling in this course or with instructor interview/permission.
CLOSE

Weaponized Malware and Network Attack Forensics

Item #
ACIR 220
Total Credits
3

Introduces Cyber Incident Response team members to identifying, finding and eradicating Malicious Software and Network attacks. Also includes delivery methods, payloads, and the forensic examination of their content.

Prerequisites
Successful completion of ACIR 210 (Response Planning and Network Protection) prior to enrolling in this course or an instructor(s) interview/permission.
CLOSE

Recovery Analysis and Report Writing

Item #
ACIR 230
Total Credits
4

Introduces the student to recovering computer and network systems after responding to a Cyber Incident or breach. Introduces the NIST standards of Cyber Incident Response reporting and responsibilities inherent with this role.

Prerequisites
Successful completion or Concurrent enrollment in ACIR 220 (Weaponized Malware and Network Attack Forensics) prior to enrolling in this course or an instructor(s) interview/permission.
CLOSE
This page was last updated on May 11, 2016.