Jan 15, 2025  
2024-25 Catalog 
    
Catalog Navigation
  Catalog Home
  About Highline
  Academic Calendars
  Core Competencies
  Enroll in Classes
  Getting Started
  Assessment, Placement, and Educational Planning
  Financial Aid
  Programs, Resources and Services for Students
  Registration and Records
  Tuition and Fees
  Advanced Placement Equivalency Information
  Course Descriptions
  All Programs (A-Z)
  Associate Degree & Certificate Requirements
  Baccalaureate Degree Requirements
  Degree & Certificate Programs
  Distribution Areas
  Professional Technical Associate Degree & Certificate Types
  Transferable Degree Information
  Other Instructional Programs
  Board of Trustees/Faculty/Staff
  College Policies and Procedures
  Instructional Policies and Procedures
  Maps
  Services Directory
  Glossary
  Veterans Services Addenda
  My Portfolio
HELP
2024-25 Catalog
Add to Portfolio (opens a new window)

CIS 460 - Incident Response

5 Credits
Students use lab environments to explore Incident Response. The students will gather and use threat intel to identify indicators of compromise, tactics, techniques, and procedures. Students will explain and demonstrate their processes through reporting.

Pre-requisite(s) CIS 450 min 2.0
Program Admission Required Yes Admitted Program BAS - CIS
FeesAcademic Technology Fee

Quarters Typically Offered
Designed to Serve For students admitted to the BAS program in Cybersecurity and Digital Forensics.
Active Date 20240401T16:35:02

Grading Basis Decimal Grade
Class Limit 24
Contact Hours: Lecture 44 Lab 22
Total Contact Hours 66
Degree Distributions:
ProfTech Course Yes
Restricted Elective Yes
Course Outline
 

  • Frameworks for incident handling
  • Organizational roles in incident response
  • Compliance, legal, and regulatory requirements for incident handling
  • Incident management program processes
    • Preparation and training
    • Analysis of events and detection of incidents
    • Incident containment, eradication, and recover
    • Post-incident analysis
  • Testing detection and response capabilities
  • Architecting for visibility
  • Developing response playbooks
  • Incident response for common environments
    • Internal systems
    • Cloud platforms
    • Software as a service
    • Development
  • Organizational policies, procedures, and standards for incident handling


Student Learning Outcomes
Summarize the principles of computer security incident response

Summarize the regulatory and compliance requirements of computer security incident response

Evaluate frameworks and methodologies used to interpret common tactics, techniques, and procedures

Create incident response playbooks and describe contingency planning

Identify technical, compliance, and regulatory trends in incident response

Generate system security plan recommendations from lessons learned through the incident response process

Perform monitoring, detection, and incident management for systems commonly used in industry


Add to Portfolio (opens a new window)