Chapter 1: Introduction
Chapter 2: Assessing Information Security Risk
Chapter 3: Analyzing the Threat Landscape
Chapter 4: Analyzing Reconnaissance Threats to Computing and Network Environments
Chapter 5: Analyzing Attacks on Computing and Network Environments
Chapter 6: Analyzing Post-Attack Techniques
Chapter 7: Managing Vulnerabilities in the Organization
Chapter 8: Implementing Penetration Testing to Evaluate Security
Chapter 9: Collecting Cybersecurity Intelligence
Chapter 10: Analyzing Log Data
Chapter 11: Performing Active Asset and Network Analysis
Chapter 12: Responding to Cybersecurity Incidents
Chapter 13: Investigating Cybersecurity Incidents
Chapter 14: Appendix A: Mapping CyberSec First Responder (Exam CFR-310) Objectives to
Chapter 15: Appendix B: Regular Expressions
Chapter 16: Appendix C: Security Resources
Chapter 17: Appendix D: U.S. Department of Defense Operational Security Practices
Hands on Activities (Live Labs)
- Analyzing Reconnaissance Threats to Computing and Network Environments
- Analyzing Attacks on Computing and Network Environments
- Analyzing Post-Attack Techniques
- Managing Vulnerabilities in the Organization
- Collecting Cybersecurity Intelligence
- Analyzing Log Data
- Performing Active Asset and Network Analysis
- Investigating Cybersecurity Incidents
Below are some of the career paths and potential opportunities after passing the Cybersec First Responder (CFR) exam.
- Incident Analyst
- Incident Responder
- Network Security Engineer
- Network Defense Technician
- Information Assurance Analyst
Here are the prerequisite of the CFR-310 exam:
- At least two years (recommended) of experience or education in computer network security technology, or a related field.
- The ability or curiosity to recognize information security vulnerabilities and threats in the context of risk management.
- Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs.
- General knowledge of the concepts and operational framework of common assurance
- safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms.
- Foundation-level skills with some of the common operating systems for computing environments. Entry-level understanding of some of the common concepts for network environments, such as routing and switching.
- General or practical knowledge of major TCP/IP networking protocols, including, but not limited to, TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP.
- What is the exam registration fee? USD 771.75
- Where do I take the exam? Pearson VUE
- What is the format of the exam? Multiple Choice/Multiple Response
- How many questions are asked in the exam? The exam contains 100 questions.
- What is the duration of the exam? 120 minutes
- What is the passing score? 70% or 71%, depending on exam form.
- What is the exam's retake policy?
Any candidates who do not pass a CertNexus certification exam on the first attempt are eligible for one free retake after 30 calendar days from the time they took the initial exam. All CertNexus certification exam vouchers include one free retake. Candidates must purchase another voucher for any subsequent attempts beyond the first free retake.
- What is the validity of the certification? TBD (Typically 3 years from Launch Date)
- Where can I find more information about this exam? Know more about the CFR-310