Description
Conduct expert digital investigations in complex Windows environments, integrating operational, regulatory, and strategic constraints (NIS2, LPM, post-crisis), and produce actionable deliverables for Group SSI management.
Learning Objectives
- Deploy an advanced forensic strategy tailored to Windows industrial and multi-site environments
- Exploit artifacts, RAM, logs, and the Registry to identify the origin of an incident
- Reconstruct the timeline of an attack in critical environments (IT/OT, AD, network)
- Propose robust evidence in a legal, post-incident, or contentious context
- Produce an operational restitution for CISOs, SOCs, and crisis management teams
Target Audience
Group CISO or critical entities
Level 3 SOC analysts
Forensic / incident response referents
Experienced cybersecurity auditors
Judicial or industrial SI security experts
Prerequisites
10 to 15 years of experience in cybersecurity, forensics, or incident response.
Advanced proficiency in Windows architecture (AD, Registry, NTFS, network services).
Experience in post-incident analysis or digital forensics.
Program Outline
Informations
Duration
3 jour(s)
21h
Tarif
2200 € HT
HT