Global Cyber Protection Trainingfor Public Sector

The dramatic increase in electronic evidence found during investigations has required government, law enforcement, and military investigators to become increasingly reliant upon digital forensics for proper data retrieval and analysis. To ensure that such data can become key prosecutorial evidence, investigators need the proper tools and training to develop a proactive strategy. Alvarez & Marsal provides comprehensive training on the use of advanced tools for forensic examination, as well as critical techniques for managing and responding to any breach of data. A&M’s instruction is tailored to the organization’s requirements and provides information that can be immediately implemented by staff upon return to their department or agency. A&M’s experts bring deep experience and conduct worldwide training sessions for corporate information security personnel, as well as international, federal and local law enforcement agencies, and security departments of leading Fortune 500 corporations. The Alvarez & Marsal team is the most qualified information security and digital investigations training team in the international market. A&M’s consultants and instructors have leveraged their extensive government and corporate experience on training engagements in more than 25 countries, helping strengthen the defenses and knowledge of governments and private companies.

In the United States, A&M staff have trained computer crime agents fromevery major federal law enforcement agency, including:

Our staff also trained computer crime agents from the following agencies in Europe:

ABOUT ALVAREZ & MARSAL

Alvarez & Marsal sets the standard for delivering results on critical matters. With an increase in the complexity of corporate investigations, regulatory enforcement actions, and high stakes litigation, that ability is more important than ever. From the boardroom to the court room, A&M professionals draw on their deep skills and experience in business investigations, litigation consulting, forensic technology, and expert testimony to provide clients with the solutions they seek to achieve their goals.

© Copyright 2013 Alvarez & Marsal Holdings, LLC. All Rights Reserved.

To learn more, visit www.alvarezandmarsal.com

Follow us on:

The Federal Bureau of Investigation

Most National Police Forces across Europe

US Secret Service

Serious Fraud Office

US Department of Justice

Serious Organized Crime Unit

Environment Protection Agency

HM Revenue & Customs

Naval Criminal Investigative Services

British Transport Police

Air Force Office of Special Investigation

Interpol

Immigration and Customs Enforcement

Turkish Gendarmerie

The Bureau of Alcohol Tobacco and Firearms

NORTH AMERICA | EUROPE | MIDDLE EAST | LATIN AMERICA | ASIA

Server Incident Response (Windows & Linux)

Students attending this course will learn:

• Network Communications

• Network Logs

• Linux and Macintosh File Systems

• Log Indentications and Analysis

• Log Analysis Tools: Console and Sawmill

• Intro to Macintosh and Linux Servers

• Macintosh and Linux Servers Incident Reponse

• Windows Event Log Analysis Tools: MS Log Parser, Sawmill and Event Viewer

• Understanding Account, Group and Policy Change Events

• Windows Bitlocker

• Microsoft Windows Server Incident Response

• F-Response in an IR Environment

• Advanced Forensic Imaging Techniques

Mastering Macintosh Forensics

Students attending this course will learn:

• Mac and Apple History

• OS, Disk Structure, Partitions

• OS X File Systems and Directory Structure

• Boot Process

• Mac Technologies and Applications

• Mac Web Browsing and Email Evidence

• Log Files and Console Viewer

• Terminal Interface

• Operating System and Application Artifacts

• OS X PLISTS

• Disk Utility

• File Vault Overview

• Incident Response and Seizure

• Mac Air Imaging Techniques Using Raptor

• Imaging OS X and Disk Arbitration

• iOS Imaging & Analysis

Guidance Software’s EnCase® I, II, Enterprise and EnCE Prep

EnCase V7 Computer Forensics I

• Basic structures of the FAT, NT, and ExFAT file systems

• Conducting raw and index searches• Analyzing file signatures and

view files• Conducting hash analysis and

importing hash sets

EnCase V7 Computer Forensics II

• Recovering encrypted and deleted file partitions and folders

• EnCase Evidence Processor• EnCase Virtual File System (VFS)

and EnCase Physical Disk Emulator (PDE)

• Identifying Windows 7 OS artifacts

EnCase V7 EnCE Prep

• Using EnCase Forensic v7 software to review the skill set required to address the EnCE practical examination

EnCase V7 Enterprise Examinations

• Secure Authentication for EnCase (SAFE)

• Deploying servlets to supported operating systems

• Optimizing network acquisitions in Enterprise v7 security

• Acquiring physical and logical data• Creating filters and conditions to

streamline investigations

Cellebrite Mobile Phone Forensics Training

Mobile Forensics Fundamentals

• Mobile Device Technology Overview• Mobile Device Forensic Process• Seizure, Acquisition and Analysis of

Mobile Devices• Verification and Validation

of Findings

Logical Operator Training

• Mobile Device Technology Overview• Mobile Device Trends• Forensic Handling of Mobile

Devices• UFED Touch Overview

and Extractions• Logical Analyzer Overview• Reporting on Technical Findings• UFED Reader

Physical Analyst Course

• File Systems and Media Encoding• UFED Touch Overview• Physical Analyzer Overview• Advanced Search Techniques• Verification and Validation of

Findings• Reporting on Technical Findings• Plug-in Chain Manager• Smart Device Overview and

Challenges

A&M TRAINING PROGRAMS FOR GOVERNMENT AND PUBLIC SECTOR ENTITIES IN DETAIL

NORTH AMERICA | EUROPE | MIDDLE EAST | LATIN AMERICA | ASIA

A&M staff have trained foreign computer crime agents of Federal Police Forces / Investigative Agencies in the following countries:

Trinidad and Tobago

Tanzania

Saudi Arabia UAE

Indonesia

Jordan

Ethiopia

Kenya

Egypt

Ecuador

Senegal

Chile

Brazil

BosniaGreece

Bangladesh

PhilippinesPakistan

Kazakhstan

Kyrgyzstan

India

Bahamas

USA

Jamaica Oman

Colombia

Mexico

A&M CYBER PROTECTION EXPERTS HAVE CO-WRITTEN SEVERAL INDUSTRY LEADING BOOKS ON CYBER PROTECTION