It is best for professionals who must collect and analyze digital evidence in investigations, while those lacking OS and security fundamentals may benefit from preparatory learning first.
This course is designed for practitioners involved in investigations—computer forensics specialists and consultants, cybersecurity professionals, cyber intelligence analysts, electronic data analysts, and information security team members supporting incident investigations.
If your daily work rarely touches operating systems, file systems, or technical troubleshooting, you may find parts of the analysis workflow harder to absorb at speed. In that case, strengthening fundamentals first helps you gain more from the practical content.
If your responsibilities are limited to policy oversight without investigative execution, a governance-focused path may be more efficient than an operational examiner track.
Match the course to your role: if you will touch evidence, handle chain-of-evidence documentation, or support investigations under scrutiny, this training aligns well.
“The best fit is anyone responsible for turning traces into defensible evidence.”

ISO 27001 Senior Lead Implementer • Certified Artificial Intelligence Professional
This four day advanced training prepares security professionals to design, run, and continuously improve an information security incident management capability aligned with ISO 27035:2023.
View courseThis Lead Cybersecurity Manager training prepares professionals to design, implement, and manage a cybersecurity program that stands up to real threats, regulatory scrutiny, and executive oversight.
View courseThis four-day training builds the capability to lead or participate in professional penetration tests by combining hands-on technical techniques with the planning and management skills required to run engagements effectively.
View courseYou will be able to run a structured forensic operation that preserves evidence integrity, performs defensible acquisition, and produces clear, documented findings.
byChristophe MAZZOLA
You keep evidence defensible by controlling access, documenting every handling step, using repeatable acquisition methods, and maintaining traceable records for review.
byChristophe MAZZOLA
This course is for assessors, laboratory managers, consultants, technicians, and technical experts involved in ISO/IEC 17025 accreditation.
byChristophe MAZZOLA
Describe governance responsibilities and accountable ownership for program oversight Identify decision points that require approvals and documented rationale Define deliverables th
The course focuses on governance discipline and decision clarity rather than tools.
You will be able to run a structured forensic operation that preserves evidence integrity, performs defensible acquisition, and produces clear, documented findings.
A useful forensic report is clear, traceable, and decision-oriented, linking conclusions to evidence and documenting methods so others can review the work.
Browse all FAQs →
Full knowledge base
Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.