Digital Forensics and Incident Response training

Use case

The basics of defense for every employer

Ukatemi Technologies

09/23/2021

Problem statement

Companies do not prioritize employing IT security specialists as they do not directly generate income, they help prevent compromise and protect business secrets. Cybersecurity incidents are rare events but usually have devastating impact. In case of a sophisticated ransomware, every operation of an organization can be disabled and the future of the company is at the mercy of the attackers.

Since the early 2000s, both the frequency and impact of cyber attacks increased hundredfold. Nowadays, every system (including the organization itself) must be built with security in mind from the very start.

Cybersecurity awareness

A chain is only as strong as its weakest link. Every employee should have some degree of cybersecurity knowledge so they cannot be easily fooled. A developer should be aware of common implementation errors so as not to introduce vulnerabilities to services. An assistant who exchanges tens of email messages with external parties every day should be able to discover phishing attemts and fraud. System administrators should be able to protect evidence until the investigators arrive. Cybersecurity awareness trainings fill their knowledge gap.

DFIR trainings

Ukatemi provides several trainings in connection with cybersecurity. One of our most advanced training provides detailed examples and hands-on exercises on handling a cybersecurity incident. Those who complete the training will have the necessary skills to perform initial steps to preserve as much evidence as possible until a more skilled investigator arrives. They will know how to create memory images of compromised systems, forensic duplicate disks, identify co-workers who might have beed parts of the attack chain, build an initial timeline.