USA
India
APAC
Middle East
Rest of the Countries
CIDR
Advanced skills to hunt, detect, and prevent a wide range of threats
Cyber attackers are outpacing businesses by weaponizing themselves with sophisticated attack patterns and techniques to perform cyber-attacks.
Even though organizations are using high-level AVs, SIEM, and FIM solutions, attacks are happening. Analyzing and interpreting Indicators of Compromise (IoC) in complex infrastructures has become a challenge.
Cyber attackers are leaving no traces of malware making it difficult for organizations to suspect any adverse activity. This, in turn, increases the dwell time and gives intruders an advantage for lateral movement inside networks.
The latest data breach statistics show a staggering increase in the dwell time from 99 days to 101 days between 2017-18. If the time to detect and mitigate a threat is reduced, then the end game of an adversary can be abated, saving the cost for organizations to face aftermaths of data breaches.
More than 77% of breach impact on organizations can be reduced if we can reduce the dwell time to 7 days. In this context, there is a serious need for Threat Hunting and Incident Response training and skills to save organizations from serious cyber-attacks
SISA’s CIDR is an extensive Threat Hunting and Incident Response training program with payments forensics knowledge as the kernel. The training program equips participants with the right methods to introspect and ask the right questions on Incident scoping and containment.
The CIDR security training was designed by Mr. Renju Varghese Jolley, PCI council approved core Payments Forensics Investigator with immense virtuosity of investigating data breaches around the world.
CIDR is a 2-day concept-driven comprehensive coverage of security incident management skills to help participants in proactive threat detection and mitigation. The program also focuses on the importance of effective Security Operations Center to efficiently hunt, detect, and prevent adverse activities. Many grey areas, ignored by most cybersecurity processes today are covered in the CIDR course.
The security training is useful for Security Analysts & Engineers, Red Teaming & Penetration Testing professionals, and IT security professionals. The contents covered in the CIDR training are helpful for CISOs and Information Security officials to conduct effective team reviews to drive efficient security architecture, focusing on reducing dwell time.
Even though organizations are using high-level AVs, SIEM, and FIM solutions, attacks are happening. Analyzing and interpreting Indicators of Compromise (IoC) in complex infrastructures has become a challenge.
Cyber attackers are leaving no traces of malware making it difficult for organizations to suspect any adverse activity. This, in turn, increases the dwell time and gives intruders an advantage for lateral movement inside networks.
The latest data breach statistics show a staggering increase in the dwell time from 99 days to 101 days between 2017-18. If the time to detect and mitigate a threat is reduced, then the end game of an adversary can be abated, saving the cost for organizations to face aftermaths of data breaches.
More than 77% of breach impact on organizations can be reduced if we can reduce the dwell time to 7 days. In this context, there is a serious need for Threat Hunting and Incident Response training and skills to save organizations from serious cyber-attacks
SISA’s CIDR is an extensive Threat Hunting and Incident Response training program with payments forensics knowledge as the kernel. The training program equips participants with the right methods to introspect and ask the right questions on Incident scoping and containment.
The CIDR security training was designed by Mr. Renju Varghese Jolley, PCI council approved core Payments Forensics Investigator with immense virtuosity of investigating data breaches around the world.
CIDR is a 2-day concept-driven comprehensive coverage of security incident management skills to help participants in proactive threat detection and mitigation. The program also focuses on the importance of effective Security Operations Center to efficiently hunt, detect, and prevent adverse activities. Many grey areas, ignored by most cybersecurity processes today are covered in the CIDR course.
The security training is useful for Security Analysts & Engineers, Red Teaming & Penetration Testing professionals, and IT security professionals. The contents covered in the CIDR training are helpful for CISOs and Information Security officials to conduct effective team reviews to drive efficient security architecture, focusing on reducing dwell time.
CIDR Agenda
Day 1
- Introduction to Payment Ecosystem
- Compliance Validation, Requirements and Process
- Compliance Overview
- PCI Risk Assessment
- Scoping Process and De-scoping tools and techniques including but not limited to point to point encryption and tokenization
- Network Segmentation
Day 2
- Incident Response
- How to conduct live analysis of a system
- Quick tour on how to conduct memory analysis, and reverse engineering of a malicious file
- Incident Containment
- How to search for the indicator of compromise across the network and contain the incident
- Closing Discussion
- 10 Steps to be taken during a payment breach
- Compliance Requirements as per Regulatory Mandates
SISA’s CIDR Authorized Trainer
Renju Varghese Jolly - VP Delivery
Renju leads the MDR division and is the VP – Delivery at SISA. He is a Core Payment Forensic Investigator recognized by the PCI Council and has handled several forensic investigation audits.
Key Takeaways
- Understanding various types of payment risk
- Identify incidents using the network, service logs, OS logs
- Prepare the incident management program for your organization
- How to perform image forensic analysis
- Incident scoping and containment, and Regulatory Mandates
Who can participate?
- Security Operations Center analysts and engineers
- Penetration testers/Red team members
- Network security engineers
- Incident response team members
- Information security consultants and IT auditors
- Managers who want to understand how to create threat hunting teams and intelligence capabilities
- Anyone who is interested in threat hunting and threat intelligence
CPISI Uniqueness
- SThe course is designed and updated regularly with the use cases and key learnings from SISA’s in house SIEM solution, EOT
- The trainer of this course is the chief architect of SISA’s EOT and the head for Payments Forensics Investigation department with immense industry experience
- The course is a blend of SIEM and PFI and addresses the grey areas, ignored in most of the current day cybersecurity practices
Workshop Participants Testimonial
Trainers stress on participation by candidates made the session lively and enjoyable.
Very useful information and relevant to today’s status.
The training was very useful to understand the payment card industry standard.
The trainer was very knowledgeable and the workshop helped us to gain knowledge necessary for both personal and business development.
Trainers are SME’s, competent and knowledgeable enough to understand, respond and clarify participants queries.
My second CPISI and this was the best.
Related Articles
Infosec Report
SISA Top 5 Forensics Driven Learnings 2020
Whitepaper
DIGITIZATION IN UAE | An Answer to the Rising Threats and Vulnerabilities
Whitepaper
RBI Issues Master Direction on Digital Payment Security Controls
SISA is a forensics-driven cybersecurity company that helps secure businesses with robust preventive, detective, and corrective security services, and solutions. SISA offers products and services for risk assessment, security compliance & validation, monitoring & threat hunting, as well as training for various payment security certifications.
Industry recognition by CREST, CERT-In, SWIFT and PCI SSC serves as a testament of our skill, knowledge, and competence.
With 2000+ clients spread across 40+ countries, we leverage our learnings to provide true security, fanatic support and 10X business value to our customers.
Facebook
Linkedin 
Twitter
Youtube