2025-2026 Undergraduate Catalog 
    
    May 25, 2026  
HELP
2025-2026 Undergraduate Catalog
Facebook this Page (opens a new window)
Tweet this Page (opens a new window)
Add to Personal Catalog (opens a new window)

CIS 296 - Incident Response and SIEM


5.0 Credits
Covers a methodical and forensically sound approach to dealing with security breaches (also known as incidents). Students will learn how to manage incidents so that damage is limited and recovery time is optimal. Real-time monitoring and correlation of events taking place within an information system will be covered as well as conducting a detailed analysis of log data from various systems. This course forms the nexus between the digital forensics and cyber security courses.
Prerequisite CIS 272 and CIS 274 with a minimum grade of 2.5or concurrent enrollment or instructor permission.
Course-level Learning Objectives (CLOs)
Upon successful completion of this course, students will be able to:

  1. Implement a plan to mitigate the likelihood and impact of incidents.
  2. Develop a comprehensive incident response plan.
  3. Recover data in a forensically sound fashion from a variety ofcomputing devices.
  4. Detect compromises using key Windows events.
  5. Identify internal pivoting activity using log data.
  6. Detect post exploitation using command line logging.
  7. Configure Security Information Event Management (SIEM)tripwires.
  8. Apply long tail analysis concepts to identify abnormal systemusage.
  9. Implement phone home tracking methods.


Course Typically Offered
Fall, Winter


Facebook this Page (opens a new window)
Tweet this Page (opens a new window)
Add to Personal Catalog (opens a new window)
Catalog Navigation
  Catalog Home
  About Our College
  Get Started
  General Education Learning Outcomes
  Degrees and Certificates by Type
  Degrees and Certificates by Department or Area of Study
  Program Maps
  Overview: Degrees and Certificates
  Course Descriptions and Objectives
  Direct Transfer Agreement (DTA) Distribution Courses
  Course Prefixes
  Program Requirement Sheet Questions and Answers
  Articulation Agreements
  College Policies
  Common Course Numbering Information
  Honors Recognition
  Veterans’ Programs
  Academic Calendar 2025-26
  Tuition, Fees, and Refunds
  How to Enroll
  Financial Aid
  Student Handbook
  Administration and Faculty
  Edmonds College Glossary
  CWU Articulation Agreement
  25-26 DTA Distribution Courses
  My Personal Catalog