TRAINING PROGRAMME



Certified Incident Handling and Network Security Analyst (CIHNSA)

This training is specially conducted for the participating agencies and Sector Leads to equip them with the intermediate knowledge in Incident handling and Network Security.

Participants will be exposed to the security environment through practitioners’ experience sharing, case studies and hands on exercises by doing relevant analysis with the related tools. Participants will be exposed to the actual drill environment where the previous drill scenario will be simulated.

 

  1. Recognize the importance of following well-defined processes, policies, and procedures;
  2. Understand technical, communication, and coordination issues involved;
  3. Analyze and assess the impact of computer security incidents;
  4. Build and coordinate response strategies for various types of computer security incidents;
  5. Gain practical understanding of various methods for analyzing artefacts left on a compromised system;
  6. Obtain practical experience in the analysis of vulnerabilities and the coordination of vulnerability handling tasks.

 

  1. Computer network incident handling and incident responder professionals
  2. Computer security incident response team members and technical staff
  3. System and network administrators with incident handling experience
  4. X-Maya participants
  5. NC4 players

Day 1

Module 1 - Introduction Security Incident, Incident Handling

  1. Introduction Security Incident
  2. Incident Handling
    • Security Incident Priority
    • Handling Intrusion Incident
    • Handling Malware Incident
    • Handling Phishing Incident
    • Handling Spam Incident

Day 2

Module 2 - Malware Analysis, Web Analysis
  1. Introduction: Malware analysis
  2. Malware Analysis
    • Behavior based Analysis
    • Sandbox Analysis
  3. Introduction: Web Security

Day 3

Module 3 - Hands-on Mini Cyber Drill
  1. Web Security Analysis
    • SQL injection Attack - Analysis
    • RFI Attack – Analysis
    • LFI Attack - Analysis
  2. MINI Drill Hands-on

Pn. Sharifah Roziah Bt Mohd Kassim
Specialist
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Sharifah Roziah currently works as a Specialist for Malaysia Computer Emergency and Response Team (MyCERT) under the umbrella of CyberSecurity Malaysia. Besides being a Specialist, she is also tasked as a Manager of the Security Operation Centre in MyCERT, to ensure computer security incidents reported to MyCERT are responded in a timely and efficient manner. Prior to that, she worked as an Senior Analyst at MyCERT department. Roziah has been involved in the computer security field for over 15 years, mainly in Computer Security Incident Handling. Her area of focus and interest is on Computer Security Incident Handling, Incident Data Analysis and Network Security. Roziah had been a key person in handling and resolving many computer security incidents reported to MyCERT from the Malaysia constituency. Roziah also had appeared in the Malaysia High Court as an Expert Witness for computer related case which had highlights on local news. She had also conducted many talks, presentations, trainings in local and in international in the field of computer security particularly in Computer Security Incident Handling. Apart from that, Roziah has also produced Security Advisories on latest vulnerabilities and threats, Articles, Security Guidelines, Proceeding Paper related to computer security.



Pn. Faiszatulnasro Bt Mohd Maksom
Senior Analyst
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Faiszatulnasro perform monitoring and response on network intrusion activities including external attacks, phishing and sensitive data breaches. Determine appropriate response action required to mitigate risk by providing threat and damage assessment for security threats, which may impact client’s network.

Other than that, she interacts with other experts performing threat analysis and coordinate with other CERT, organization and individual as necessary to convey incident information. Currently involve in CYBER999 service to provide 1st level support and mitigating action by escalating cases to relevant parties.

She perform 2nd level Incident Handling – Identify, analyse, remediate and report on cyber security incidents to ensure technology employed by the incident response team compliments operational processes, to produce periodical reports/analysis to Majlis Keselamatan Negara (MKN) and to involve in Internet Banking Task Force (IBTF) in providing information and handling incidents related to banking and financial institution reported to MyCERT.

Her certifications include Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH) and Systems Security Certified Practitioner (SSCP).



En. Nur Mohammad Kamil Bin Mohammad Alta
Analyst
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

A Malware Analyst at Malaysian Computer Emergency Response Team (MyCERT), CyberSecurity Malaysia. His education background comprises of Diploma in Computer Networking Technology, from Advances Technology Institute (ADTEC) Batu Pahat. He is also a GIAC Certified Reverse Engineering Malware (GREM) and Certified Ethical Hacker (CEH).

Kamil has been with the CyberSecurity Malaysia since 2009. He's responsible for the daily operation of analyzing malware, debugging, web security, network security, system development and automation and involve in incident handling service as well. Kamil is involved in various global computer security initiatives such as the Open Source Development Group and the Honeynet Project. Some of his recent work is in the area of malware analysis, distributed honeynet and cyber drill exercises.



En. Muhammad Nur Arif Bin Tomiran
Executive
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Muhammad Nur Arif Bin Tomiran is a Malware Analyst at Malaysian Computer Emergency Response Team (MyCERT), CyberSecurity Malaysia. Previously he works as software developer at Heitech Padu Berhad.

Arif has been with the CyberSecurity Malaysia since 2018. He's responsible for the daily operation of analyzing malware, debugging, web security, network security, system development and automation and also involve in incident handling service as well. Some of his recent work is in the area of malware analysis, and cyber drill exercises.

He has Bachelor of Computer Science in Information Security and Assurance at Universiti Sains Islam Malaysia, and holds the GCFA certification.



En. Ahmad Aizuddin Aizat Bin Tajul Arif
Analyst
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Now working as an Analyst at Malaysia Computer Emergency Response Team (MyCERT), Cybersecurity Malaysia. He graduated from Universiti Sains Islam Malaysia in Bachelor of Computer Science with Honours (Information Security and Assurance) in 2011. He is responsible for analyzing malware binaries, handling security incidents, conducting research and develops security tools using open source technologies as daily routines of his job.

During previous tenure, he has been working as an IT Officer at a public university responsible for infrastructure and system development and deployment of the university Learning Management System. He has been actively involved with Malaysian Open Source communities such as Open Web Application Security Project (OWASP) Malaysia Chapter, Honeynet Project Cybersecurity Malaysia Chapter, Malaysia Moodle Community and Ubuntu Malaysia Local Community. He also an instructor for information security workshops targeting university students.

The CIHNSA examination is certified by the Global ACE Certification. The examination framework is designed to align with a set of relevant Knowledge, Skills and Attitudes (KSA) that are necessary for a Secure Application Professional. Candidates will be tested via a combination of either continual assessment (CA), multiple choice (MC), theory/underpinning knowledge assessment (UK), practical assessment (PA), assignments (AS) and case studies (CS) as required.

Candidates can take the examination at authorized examination centres in participating member countries. Candidates who have successfully passed the CIHNSA examination will be eligible to apply as an associate or professional member by fulfilling the membership criteria defined under the Global ACE Certification.

Click here to register for certified examination

 

  • 2 - 4 February 2021
  • 1 - 3 June 2021
  • 21 - 23 September 2021
  • 14 - 16 December 2021

Training Fee: MYR3,780.00
Exam Fee: MYR1,255.80

(subject to 6% SST)

Please click here to register


Contact us to request for a quotation

18 CPD Point

Please submit the Certificate of Completion to Global ACE Certification at www.globalace.org