Intrusion Detection/Prevention Systems
The intent of the Intrusion Detection/Prevention Systems (IDS) Knowledge Unit is to provide students with knowledge and skills related to detecting and analyzing vulnerabilities and threats and taking steps to mitigate associated risks.
- Detect, identify, resolve and document host or network intrusions.
- Use tools and algorithms to detect various types of malware (keyloggers, rootkits) and unauthorized devices (rogue wireless access points) on a live network.
- Configure IDS/IPS systems to reduce false positives and false negatives.
- Deploy reactive measures to respond to detected intrusion profiles.
Below are the Knowledge, Skills, Abilities and Tasks (KSA-T) identified as being required to perform this work role.
Learn More about the KAS-T's.