OBJECTIF

Technological developments, and particularly in the field of security, are, as everyone knows, very fast.
In addition, the volume of information to be processed to keep up to date is very important.These constraints require the method.The training makes it possible to understand well the stakes of the technological watch in security. We will explain domain-specific terminologies, vulnerabilities, exploits, risk levels, etc.
We will also present the most effective sources of information, as well as tools to facilitate content retrieval, sorting and sharing. We will conclude the session by describing the functioning of a monitoring team through the operation of a CERT / CSIRT.

In particular, the objectives of the training are:

• Become effective in technological watche
• Obtaining the keys to set up a monitoring team within an organization

PREREQUISITES

• Proficiency in the use of a computer station and the Internet

• Recommended basic use of virtualization with Virtualbox

GENERAL INFORMATION

• Code : VTS
• Durée : 1 jour
• schedule : 8h30 - 17h30
• place : training center, Center Urbain Nord

TARGETED AUDIENCE

• • Any audience with a culture or technical interests

RESOURCES

• Course materials
• 40% demonstration
• 40% of theory
• 20% practical exercises

PROGRAM OF TRAINING

• Days 1
• • Challenges of technology watch
  • Targets specific to cybersecurity
  • Definition of a vulnerability
  • Definition of exploitation
  • Types of corrective actions CVE database and CVSS score
  • Sources of information (Twitter mailing lists, Reddit, etc.)
  • RSS feeds (Tiny Tiny RSS)
  • Automation (Google Alerts, Zapier, Netvibes)
  • Organization of a watch team (CERT, CSIRT, ENISA)