Preventing Web and Email Server Attacks Cyber Range Training (IR205)

The Cybersecurity and Infrastructure Security Agency (CISA) is proud to offer the Incident Response Training event, Preventing Web and Email Server Attacks Cyber Range Training (IR205), on Tuesday, September 26, 2023 from 9 a.m. to 1 p.m. EDT. The 200-level training events are open to government employees and contractors across federal, state, local, tribal, and territorial government, educational partners, and critical infrastructure partners. Please use your organization email address when registering. 

This course is ideal for those working in cybersecurity roles who are interested in learning technical incident response skills and requires active engagement from all participants. The course assumes a mixed audience (e.g., from disparate teams and organizations) of mixed capability. 

Participants will be introduced to common web and email vulnerabilities, as well as the technologies of encryption and authentication to enhance web and email security. This course uses an active participation approach to facilitate realistic technical training and interaction opportunities for learners. 

Experience these benefits and more: 

• Practice in a realistic environment: Analyze network and host-based artifacts and implement remediation changes for the identified vulnerabilities.  

• Learn how to implement CISA guidance: Course exercises include implementation of the recommendations in BOD 18-01. 

• Identify and mitigate vulnerabilities in real time: Students will identify common web and email vulnerabilities and mitigate them by reconfiguring the web server and DNS settings. 

• Expert facilitation and peer discussion: Throughout the course, expert cybersecurity engineers will moderate discussion and conduct a recovery debrief for the exercises. Participants are also encouraged to help one another and address peer questions. 

This exercise is a step-by-step, facilitated experience that uses a keyboard approach to understand these topics in a realistic technical environment. 

Approved registrants must attend a mandatory student technical check the day before the training to establish a connection to the course content and lab environment. 

EVENT LOGISTICS 

• Date: Tuesday, September 26, 2023 

• Time: 9 a.m. to 1 p.m. EDT 

• Location: Online via WebEx 

• CPE Credit: Participants can earn 4 CPE credits for attending this course. 

• Attendee Requirements: This course requires active participation. Attendees can use government-issued computers or personal computers. A second monitor is recommended. 

• Note: Audio is through WebEx; there is no external dial-in. 

• Closed captioning (English only) will be available during this training event. Previously recorded webinars are available on the CISA YouTube Channel for playback in other languages, if required. 

Due to participation requirements, please register no later than 48 hours before the course starts. Cyber Insights will not accept registrations made less than 48 hours before the course start.