Best training for incident response

TJ 0 Reputation points
2023-01-18T15:32:48.46+00:00

Hello Everyone,

I would like to develop my understanding of Windows, with the focus on tools that can help find/remove threat actors from the system and help create a timeline to make a clear picture of what actually happend.

I would like to learn more about: Command promt, Powershell, Registery, event viewer and all other tools that can be helpful for this purpose.

I know I could find a lot of stuff online, but I was wondering if there is something microsoft provides that would cover these topics.

Thanks in advance!

Kind regards,

TJ

Not Monitored
Not Monitored
Tag not monitored by Microsoft.
40,916 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Carlos Solís Salazar 18,056 Reputation points MVP
    2023-01-18T17:20:53.15+00:00

    Thank you for asking this question on the Microsoft Q&A Platform.

    Microsoft has a related certification about it.

    Microsoft Certified: Security Operations Analyst Associate

    The Microsoft security operations analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders. Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, and third-party security products. Since the security operations analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies.

    Hope this helps!


    Accept Answer and Upvote, if any of the above helped, this thread can help others in the community looking for remediation for similar issues.

    NOTE: To answer you as quickly as possible, please mention me in your reply.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.