Courses

Cyber Security - CyberSEC FIRST Security Responder (CFR®)

Course number: CGICFR40 - 5 Days (weekdays or on-demand)

Cyber threats are constant – and escalating. To defend networks and critical assets, today’s IT professionals need more than just awareness – they need structured, tested methods to detect, respond, and recover. Rapid and skilled response is more critical than ever.

This course equips practitioners with the skills to assess risk, monitor for intrusions, analyze threats, and respond to incidents in real time. Built around leading frameworks like NIST 800-61r2 and PPD-41, the course prepares learners to protect information systems and carry out Defensive Cyber Operations (DCO) effectively. The course also prepares candidates for the CFR-410 certification exam, validating their ability to detect, contain, analyze, and recover from cybersecurity incidents across modern network environments.

Course Objectives

This course prepares learners to act as the first line of defense in cyber operations. Through labs, tools, and instructor-led discussion, participants develop the hands-on skills needed to detect threats, secure systems, and conduct response procedures aligned with federal and industry guidelines.

• Assess cybersecurity risks and analyze threat landscapes
• Identify and respond to reconnaissance, malware, and network-based attacks
• Conduct vulnerability assessments and penetration testing
• Collect and analyze log data using SIEM and forensic tools
• Execute structured incident response and recovery procedures

Prerequisites

To ensure your success in this course, you should meet the following requirements:

• At least two years (recommended) of experience or education in computer network security technology or a related field.
• The ability or curiosity to recognize information security vulnerabilities and threats in the context of risk management.
• Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs.

Target Audience

This course is designed primarily for cybersecurity practitioners preparing for or who currently perform job functions related to protecting information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. It is ideal for those roles within federal contracting companies and private sector firms whose mission or strategic objectives require the execution of Defensive Cyber Operations (DCO) or DoD Information Network (DoDIN) operation and incident handling. This course focuses on the knowledge, ability, and skills necessary to provide for the defense of those information systems in a cybersecurity context, including protection, detection, analysis, investigation, and response processes.In addition, the course ensures that all members of an IT team – regardless of size, rank, or budget – understand their role in the cyber defense, incident response, and incident handling process.

Certification

CertNexus CyberSec First Responder® (Exam CFR-410) certification

Exam

CertNexus CyberSec First Responder® exam (current version)

Duration: 120 minutes (Note: Exam time includes 5 minutes for reading and signing the Candidate Agreement and 5 minutes for the Pearson VUE testing system tutorial.)

Exam Options: In person at Pearson VUE test centers or online via Pearson OnVUE

Item Formats: Multiple Choice/Multiple Response

Accreditation

Post class completion, students can appear for the CyberSec First Responder® certification exam (current version).

Course Outline