global cyber protection training for public sector€¦ · encase v7 computer forensics ii •...
TRANSCRIPT
Global Cyber Protection Trainingfor Public Sector
The dramatic increase in electronic evidence found during investigations has required government, law enforcement, and military investigators to become increasingly reliant upon digital forensics for proper data retrieval and analysis. To ensure that such data can become key prosecutorial evidence, investigators need the proper tools and training to develop a proactive strategy. Alvarez & Marsal provides comprehensive training on the use of advanced tools for forensic examination, as well as critical techniques for managing and responding to any breach of data. A&M’s instruction is tailored to the organization’s requirements and provides information that can be immediately implemented by staff upon return to their department or agency. A&M’s experts bring deep experience and conduct worldwide training sessions for corporate information security personnel, as well as international, federal and local law enforcement agencies, and security departments of leading Fortune 500 corporations. The Alvarez & Marsal team is the most qualified information security and digital investigations training team in the international market. A&M’s consultants and instructors have leveraged their extensive government and corporate experience on training engagements in more than 25 countries, helping strengthen the defenses and knowledge of governments and private companies.
In the United States, A&M staff have trained computer crime agents fromevery major federal law enforcement agency, including:
Our staff also trained computer crime agents from the following agencies in Europe:
ABOUT ALVAREZ & MARSAL
Alvarez & Marsal sets the standard for delivering results on critical matters. With an increase in the complexity of corporate investigations, regulatory enforcement actions, and high stakes litigation, that ability is more important than ever. From the boardroom to the court room, A&M professionals draw on their deep skills and experience in business investigations, litigation consulting, forensic technology, and expert testimony to provide clients with the solutions they seek to achieve their goals.
© Copyright 2013 Alvarez & Marsal Holdings, LLC. All Rights Reserved.
To learn more, visit www.alvarezandmarsal.com
Follow us on:
The Federal Bureau of Investigation
Most National Police Forces across Europe
US Secret Service
Serious Fraud Office
US Department of Justice
Serious Organized Crime Unit
Environment Protection Agency
HM Revenue & Customs
Naval Criminal Investigative Services
British Transport Police
Air Force Office of Special Investigation
Interpol
Immigration and Customs Enforcement
Turkish Gendarmerie
The Bureau of Alcohol Tobacco and Firearms
NORTH AMERICA | EUROPE | MIDDLE EAST | LATIN AMERICA | ASIA
Server Incident Response (Windows & Linux)
Students attending this course will learn:
• Network Communications
• Network Logs
• Linux and Macintosh File Systems
• Log Indentications and Analysis
• Log Analysis Tools: Console and Sawmill
• Intro to Macintosh and Linux Servers
• Macintosh and Linux Servers Incident Reponse
• Windows Event Log Analysis Tools: MS Log Parser, Sawmill and Event Viewer
• Understanding Account, Group and Policy Change Events
• Windows Bitlocker
• Microsoft Windows Server Incident Response
• F-Response in an IR Environment
• Advanced Forensic Imaging Techniques
Mastering Macintosh Forensics
Students attending this course will learn:
• Mac and Apple History
• OS, Disk Structure, Partitions
• OS X File Systems and Directory Structure
• Boot Process
• Mac Technologies and Applications
• Mac Web Browsing and Email Evidence
• Log Files and Console Viewer
• Terminal Interface
• Operating System and Application Artifacts
• OS X PLISTS
• Disk Utility
• File Vault Overview
• Incident Response and Seizure
• Mac Air Imaging Techniques Using Raptor
• Imaging OS X and Disk Arbitration
• iOS Imaging & Analysis
Guidance Software’s EnCase® I, II, Enterprise and EnCE Prep
EnCase V7 Computer Forensics I
• Basic structures of the FAT, NT, and ExFAT file systems
• Conducting raw and index searches• Analyzing file signatures and
view files• Conducting hash analysis and
importing hash sets
EnCase V7 Computer Forensics II
• Recovering encrypted and deleted file partitions and folders
• EnCase Evidence Processor• EnCase Virtual File System (VFS)
and EnCase Physical Disk Emulator (PDE)
• Identifying Windows 7 OS artifacts
EnCase V7 EnCE Prep
• Using EnCase Forensic v7 software to review the skill set required to address the EnCE practical examination
EnCase V7 Enterprise Examinations
• Secure Authentication for EnCase (SAFE)
• Deploying servlets to supported operating systems
• Optimizing network acquisitions in Enterprise v7 security
• Acquiring physical and logical data• Creating filters and conditions to
streamline investigations
Cellebrite Mobile Phone Forensics Training
Mobile Forensics Fundamentals
• Mobile Device Technology Overview• Mobile Device Forensic Process• Seizure, Acquisition and Analysis of
Mobile Devices• Verification and Validation
of Findings
Logical Operator Training
• Mobile Device Technology Overview• Mobile Device Trends• Forensic Handling of Mobile
Devices• UFED Touch Overview
and Extractions• Logical Analyzer Overview• Reporting on Technical Findings• UFED Reader
Physical Analyst Course
• File Systems and Media Encoding• UFED Touch Overview• Physical Analyzer Overview• Advanced Search Techniques• Verification and Validation of
Findings• Reporting on Technical Findings• Plug-in Chain Manager• Smart Device Overview and
Challenges
A&M TRAINING PROGRAMS FOR GOVERNMENT AND PUBLIC SECTOR ENTITIES IN DETAIL
NORTH AMERICA | EUROPE | MIDDLE EAST | LATIN AMERICA | ASIA
A&M staff have trained foreign computer crime agents of Federal Police Forces / Investigative Agencies in the following countries:
Trinidad and Tobago
Tanzania
Saudi Arabia UAE
Indonesia
Jordan
Ethiopia
Kenya
Egypt
Ecuador
Senegal
Chile
Brazil
BosniaGreece
Bangladesh
PhilippinesPakistan
Kazakhstan
Kyrgyzstan
India
Bahamas
USA
Jamaica Oman
Colombia
Mexico
A&M CYBER PROTECTION EXPERTS HAVE CO-WRITTEN SEVERAL INDUSTRY LEADING BOOKS ON CYBER PROTECTION