Intrusion Detection for Cybersecurity

This course is organized through Madison Area Technical College. Please email Ken McCullough to register. Registration deadline is June 17, 2020.

NOTE: This class will be broadcast live via WebEx – attendees should expect to login in to the class and participate at the times scheduled.

Description: This session will provide an overview of the tools and techniques commonly used for detecting threats to an enterprise infrastructure. Implement strategies for documenting and reporting detected events based on industry standard compliance frameworks. We will use the Security Onion distribution. Tools include Elasticsearch, Logstash, Kibana (ELK/Elastic Stack), Wazuh, Snort, Zeek, Wireshark, and TCP Dump. On the final day we will be doing a capture the FLAG event in the Cyber range.

Prerequisite: Basic understanding of Linux operating system.

Instructor: Mike Masino has been an Information Technology instructor at Madison Area Technical College since 2004. Mike has eleven years of experience previously working first as an integrated control systems developer and later as systems Administrator for the University of Wisconsin Extension. Mike holds an Associate in Applied Science degree in Electronics Engineering, as well as Bachelors and Masters Degrees in Computer Science. Mike’s industry certifications include: Microsoft: MCSE, MCP + I (Win NT 4.0/ Win2000) / Cisco: CCNA, CCAI / CompTIA: A+. Security+, Network + / SANS: GCIH, GCFA, GCIA (current member of GIAC advisory board)