Cyber Security Incident Handling and Response

Course Overview

This comprehensive 3-day course is designed to equip participants with the essential skills and knowledge needed for effective cyber security incident handling and response. Ideal for professionals looking to enhance their incident management capabilities, this course prepares attendees to tackle a wide range of security incidents as well as the CPIA (CREST Practitioner Intrusion Analyst) Exam.


Training Type

Full Time


Who Should Attend
  • Aspiring incident response team members in information security
  • Practitioners seeking CREST Registration
  • System administrators handling attacks
  • Incident handlers wanting to learn about Digital Forensics
  • Government departments aiming to enhance security team skills
  • Law enforcement officers expanding investigative expertise
  • Information security managers updating on current techniques
  • Individuals interested in a career in Intrusion Analysis or Digital Forensics, meeting prerequisites



Course Duration

3 days


Total Training Duration (Hour)

24 hours


Course Outline

Day 01

1. Introduction to Incident Handling and Response

1.1. Review of Enterprise Governance and Business Continuity

1.2. Review Threat Intelligence

1.3. Overview of Incident Response Frameworks

2. Incident Handling and Response Process

2.1. Define the scope and Context for Incident Response Plan

2.2. Security By Design

2.3. Deployment and Implementation

3. Forensic Readiness and First Response

3.1. Introduction to Digital Forensics

3.2. Forensics Readiness

3.3. Digital Forensic and Incident Response


Day 02

4. Handling and Response to Malware Incidents

4.1. Dynamic Application Review

4.2. Static Application Review

4.3. Critical Areas of Assessment

5. Handling and Responding to Email Security Incidents

5.1. Define the Scope, objective of Incident Response Plan related to Email Security Incidents

5.2. Design and Develop Incident Response Plan

5.3. Define Performance Metrics Guidelines

6. Handling and Responding to Network Security Incidents

6.1. Define the Scope, objective of Incident Response Plan related to Network Security Incidents

6.2. Design and Develop Incident Response Plan

6.3. Define Performance Metrics Guidelines

6.4. Critical Area of Assessment


Day 03

7. Handling and Responding to Web Application Security Incidents

7.1. Define the Scope, objective of Incident Response Plan related to Web Application Security Incidents

7.2. Design and Develop Incident Response Playbook

7.3. Define Performance Metrics Guidelines

7.4. Critical Area of Assessment

8. Handling and Responding to Cloud Security Incidents

8.1. Define the Scope, objective of Incident Response plan related to Email Cyber attacks

8.2. Design and Develop Incident Response Playbook

8.3. Define Performance Metrics Guidelines

8.4. Critical Area of Assessment

9. Handling and Responding to Insider Threats Incidents

9.1. Define the Scope, objective of Incident Response plan related to Insider Threat Security Incidents

9.2. Design and Develop Incident Response Playbook

9.3. Define Performance Metrics Guidelines

9.4. Critical Area of Assessment


Course Learning Outcome

Upon completion of this course, participants will be able to:

  1. Establish a robust incident response plan by defining the scope and context of incidents.
  2. Implement security by design principles to enhance overall system resilience.
  3. Develop and deploy effective incident response strategies tailored to various types of security incidents.
  4. Integrate digital forensics practices into the incident response process for better evidence collection and analysis.
  5. Manage and respond to specific incidents, including malware attacks, email security breaches, network vulnerabilities, web application threats, cloud security issues, and insider threats.
  6. Design performance metrics to evaluate the effectiveness of incident response efforts and continuously improve processes.



Pre-requisites

Recommended Prerequisites:

Minimum Diploma Level is recommended.

Before attending this course, students must have:

  • Demonstrate familiarity with basic Operating system and Networking concept



Medium of Instruction & Trainer

English


Price
Course Fee Payable
Original Fee Before GST With GST (9%)
Course Fee $1,650.00 $1,798.50

Please note that prices are subjected to change.
Back to Catalogue →
Next Available Schedules
Available Seats:
Course Name:
Category:
Delivered By:
Trainer:
Venue:
Language:
Session Dates:
Registration Date:
From To