Weniger zahlen und mehr bekommen. Sparen Sie jetzt mit unseren Trainingspässen!

GIAC - Enterprise Incident Response (GEIR)

Dauer

Dauer:

Nur 2 Tage

Methode

Methode:

Klassenraum / Online / Hybrid

nächster Termin

nächster Termin:

10.2.2025 (Montag)

Overview

This accelerated GIAC Enterprise Incident Response (GEIR) certification validates a practitioner's mastery of enterprise-class incident response and threat hunting tools and techniques. GEIR certification holders have demonstrated the ability to use analysis methodologies to understand attacker movement across varying functions and operating systems.


In just 2 days, you’ll also learn:

  • Incident Response Team Management and Coordination
  • Enterprise Incident Detection and Threat Hunting
  • Large Scale Event Correlation and Timeline Analysis
  • Multi-platform Artifact Analysis
  • Analysis of Windows Artifacts
  • Analysis of Linux Artifacts
  • Analysis of macOS Artifacts
  • Analysis of Container Artifacts
  • Analysis of Cloud Environment Artifacts

At the end of this course, you’ll sit the GIAC exam, and achieve your GIAC Enterprise Incident Response (GEIR) certification. Through Firebrand’s Lecture | Lab | Review methodology, you’ll get certified at twice the speed of the traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

 

Audience

This course is ideal for:

  • Incident Response Team Leads and Advanced Practitioners
  • Threat Hunting Professionals
  • Experienced Digital Forensic Analysts
  • Enterprise Detection Engineers
  • Federal Agents and Law Enforcement Professionals
  • SANS DFIR Alumni looking to apply their forensic skills at scale.

Sehen Sie sich jetzt die Preise an, um herauszufinden, wie viel Sie sparen können, wenn Sie doppelt so schnell trainieren.

 Preise anfordern

Benefits

In einem Firebrand Intensiv-Training profitieren Sie von folgenden Vorteilen:

  • Zwei Optionen - Präsenz- oder Onlinetraining
  • Ablenkungsfreie Lernumgebung
  • Eigene Trainings- und Prüfungszentren (Pearson VUE Select Partner)
  • Effektives Training mit praktischen Übungseinheiten und intensiver Betreuung durch unsere Trainer
  • Umfassendes Leistungspaket mit allem, was Sie benötigen, um Ihre Zertifizierung zu erhalten, inklusive unserer Firebrand Leistungsgarantie.

Machen Sie einen kostenlosen Praxistest, um Ihr Wissen einzuschätzen!

 Kostenloser Übungstest

Curriculum

  • Module 1: Cloud Response and Analysis
  • Demonstrate a familiarity with popular cloud attack scenarios and display an understanding of common manual and automated techniques for identifying, extracting, and analyzing artifacts when responding to a cloud-based incident.
  • Module 2: Container DFIR Fundamentals
  • Demonstrate a basic understanding of container technology, a familiarity with common attack techniques performed against containers, and a foundational digital forensic and incident response strategy when responding to a container-based incident.
  • Module 3: Detecting Modern Attacks
  • Demonstrate an understanding of how to apply threat intelligence and information gathered through proactive threat hunting to support the detection and response to modern attacks.
  • Module 4: Enterprise Incident Response Management
  • Demonstrate an understanding of how to manage and conduct effective incident response within an enterprise environment and will display a familiarity with techniques used to address common operational challenges while performing large scale investigations.
  • Module 5: Enterprise Visibility and Incident Scoping
  • Demonstrate a familiarity with common data source types in an enterprise environment and will display an understanding of strategies to aggregate telemetry from a large volume of disparate resources in order to scope an incident.
  • Module 6: Foundational Cloud Concepts
  • Demonstrate an understanding of fundamental cloud concepts and a familiarity with the most common cloud services that enterprises use to support business operations.
  • Module 7: Linux DFIR Fundamentals
  • Demonstrate an understanding of digital forensics and incident response fundamentals for a Linux system, including foundational knowledge of the file system, locations and format of important logs, and key configuration files.
  • Module 8: Linux Essentials
  • Demonstrate a basic understanding of a Linux operating system, common challenges when securing and monitoring Linux systems, and popular platform-specific attack techniques across an attack lifecycle.
  • Module 9: macOS DFIR Fundamentals
  • Demonstrate an understanding of digital forensics and incident response fundamentals for a macOS system, including foundational knowledge of the file system, locations and format of important logs, and key configuration files.
  • Module 10: macOS Essentials
  • Demonstrate a basic understanding of a macOS operating system, common challenges when securing and monitoring macOS systems, and popular platform-specific attack techniques across an attack lifecycle.
  • Module 11: Rapid Response Triage at Scale
  • Demonstrate an understanding of how to efficiently collect, process, and analyze incident response triage data across a large volume of endpoints.

Exam Track

At the end of this accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered Certification Guarantee:

GIAC Enterprise Incident Response (GEIR) exam

  • Duration: 3 hours
  • Format: 1 proctored exam
  • Number of questions: 82 questions
  • Passing score: Minimum passing score of 72%

What's Included

Prerequisites

There are no prerequisites for this accelerated course.

Sind Sie sich unsicher, ob Sie die Voraussetzungen erfüllen? Wir besprechen gerne mit Ihnen Ihren technischen Hintergrund, Erfahrung und Qualifikation, um herauszufinden, ob dieser Intensivkurs der richtige für Sie ist.

Erfahrungsberichte

Bereits 134561 Kursteilnehmer haben seit 2001 erfolgreich einen Firebrand-Kurs absolviert. Unsere aktuellen Kundenbefragungen ergeben: Bei 94.76% unserer Teilnehmer wurde die Erwartungshaltung durch Firebrand übertroffen!


"Good balance between training and self-study time. Very good trainer. Good accommodation and catering."
Anonym (4.5.2015 (Montag) bis 8.5.2015 (Freitag))

"+ Place was nice + Training rooms good + Trainer open for discussions"
Anonym (4.5.2015 (Montag) bis 8.5.2015 (Freitag))

"I learned a lot and the course helped me to prepare for the exam. The trainer was very competent and all the staff was nice and polite."
Anonym (4.5.2015 (Montag) bis 8.5.2015 (Freitag))

"Good knowledge and experience on Cyber Security for ICS."
Anonym (21.11.2016 (Montag) bis 25.11.2016 (Freitag))

"Firebrand provided a first class course and testing centre and makes getting the certification very simple. Having both training and exam in a single centre was very helpful."
Anonym (21.11.2016 (Montag) bis 25.11.2016 (Freitag))

Kurstermine

Start

Ende

Verfügbarkeit

Standort

Anmelden

26.8.2024 (Montag)

27.8.2024 (Dienstag)

Kurs gelaufen - Hinterlasse Kommentar

-

 

 

10.2.2025 (Montag)

11.2.2025 (Dienstag)

Einige Plätze frei

Überregional

 

24.3.2025 (Montag)

25.3.2025 (Dienstag)

Einige Plätze frei

Überregional

 

5.5.2025 (Montag)

6.5.2025 (Dienstag)

Einige Plätze frei

Überregional

 

16.6.2025 (Montag)

17.6.2025 (Dienstag)

Einige Plätze frei

Überregional

 

Neueste Rezensionen von unseren Kursteilnehmern

Trustpilot