FIRST boosts learning and development offering with launch of open training platform
June 2017 by Marc Jacob
Forum of Incident Response and Security Teams (FIRST) has announced the release of an open training platform to host the organization’s training courses. The platform will allow FIRST members and other interested parties to enroll in e-learning courses on cyber security incident response online. The courses can be undertaken at their own pace and wherever it is most convenient for them.
In addition, FIRST is making two of its core incident response courses available for download via its website under a creative commons license.
The new courses cover the following topics:
• Common Vulnerability Scoring System (CVSS) v3: CVSS is a standard for communicating the characteristics and severity of software vulnerabilities. The self-paced course assumes no prior experience of the current version of the standard, CVSS version 3.0, though it includes an optional section for people familiar with CVSS version 2.0. Its development has been overseen by the CVSS Special Interest Group (SIG) with input from representatives of a broad range of industry sectors, from banking and finance to technology and academia
• FIRST CSIRT Basic Course: These six modules teach new teams the basics of CSIRT work. Founded on the FIRST CSIRT Framework, this training helps new teams to establish themselves and get basic services running. Each module is accompanied by an extensive Lab session focused on applying the introduced concepts
• FIRST Fusion course: This course helps incident response professionals determine the methods and techniques needed to analyze and fuse information. It provides them with the tools needed to identify relationships and commonalities amongst the data, ultimately helping their business or organization to better respond to security threats
Margrete Raaum, Chair of FIRST, said: “We are excited to offer this new platform, which allows us to bring more educational information directly to FIRST members, as well as members of the cyber security incident response community more broadly.”
Thomas Schreck, the FIRST board member responsible for training delivery, added: “In particular we expect significant interest for our CVSS v3 course. CVSS v3 was released two years ago and has seen steady adoption amongst the security community. This course helps incident responders and product security professionals become up to date on the new version of the standard, and apply it while prioritizing risk for their organization”.