SF – Cyber Security Incident Handling and Response
TGS-2020505581
Course Overview
This comprehensive 3-day course is designed to equip participants with the essential skills and knowledge needed for effective cyber security incident handling and response. Ideal for professionals looking to enhance their incident management capabilities, this course prepares attendees to tackle a wide range of security incidents as well as the CPIA (CREST Practitioner Intrusion Analyst) Exam.
Training Type
Full Time
Mode of Assessment
Written & Practical Performance
Who Should Attend
- Aspiring incident response team members in information security
- Practitioners seeking CREST Registration
- System administrators handling attacks
- Incident handlers wanting to learn about Digital Forensics
- Government departments aiming to enhance security team skills
- Law enforcement officers expanding investigative expertise
- Information security managers updating on current techniques
- Individuals interested in a career in Intrusion Analysis or Digital Forensics, meeting prerequisites
Course Duration
3 days
Total Training Duration (Hour)
24 hours
Course Outline
Day 01
1. Introduction to Incident Handling and Response
1.1. Review of Enterprise Governance and Business Continuity
1.2. Review Threat Intelligence
1.3. Overview of Incident Response Frameworks
2. Incident Handling and Response Process
2.1. Define the scope and Context for Incident Response Plan
2.2. Security By Design
2.3. Deployment and Implementation
3. Forensic Readiness and First Response
3.1. Introduction to Digital Forensics
3.2. Forensics Readiness
3.3. Digital Forensic and Incident Response
Day 02
4. Handling and Response to Malware Incidents
4.1. Dynamic Application Review
4.2. Static Application Review
4.3. Critical Areas of Assessment
5. Handling and Responding to Email Security Incidents
5.1. Define the Scope, objective of Incident Response Plan related to Email Security Incidents
5.2. Design and Develop Incident Response Plan
5.3. Define Performance Metrics Guidelines
6. Handling and Responding to Network Security Incidents
6.1. Define the Scope, objective of Incident Response Plan related to Network Security Incidents
6.2. Design and Develop Incident Response Plan
6.3. Define Performance Metrics Guidelines
6.4. Critical Area of Assessment
Day 03
7. Handling and Responding to Web Application Security Incidents
7.1. Define the Scope, objective of Incident Response Plan related to Web Application Security Incidents
7.2. Design and Develop Incident Response Playbook
7.3. Define Performance Metrics Guidelines
7.4. Critical Area of Assessment
8. Handling and Responding to Cloud Security Incidents
8.1. Define the Scope, objective of Incident Response plan related to Email Cyber attacks
8.2. Design and Develop Incident Response Playbook
8.3. Define Performance Metrics Guidelines
8.4. Critical Area of Assessment
9. Handling and Responding to Insider Threats Incidents
9.1. Define the Scope, objective of Incident Response plan related to Insider Threat Security Incidents
9.2. Design and Develop Incident Response Playbook
9.3. Define Performance Metrics Guidelines
9.4. Critical Area of Assessment
Certification Obtained and Conferred by
- BridgingMinds Certificate of Attendance (upon achieving minimum 75% class attendance)
- WSQ Statement of Attainment (upon passing the relevant assessment)
- To download WSQ e-Certs, Learners can log in to MySkillsFuture portal via SingPass > go to Skills Passport > Certificates
Course Learning Outcome
Upon completion of this course, participants will be able to:
- Establish a robust incident response plan by defining the scope and context of incidents.
- Implement security by design principles to enhance overall system resilience.
- Develop and deploy effective incident response strategies tailored to various types of security incidents.
- Integrate digital forensics practices into the incident response process for better evidence collection and analysis.
- Manage and respond to specific incidents, including malware attacks, email security breaches, network vulnerabilities, web application threats, cloud security issues, and insider threats.
- Design performance metrics to evaluate the effectiveness of incident response efforts and continuously improve processes.
Pre-requisites
Basic knowledge of Operating Systems and Network Operations.
Medium of Instruction & Trainer
English
Funding Information
Skillsfuture Singapore (SSG) - WSQ Certifiable Funding
Criteria:
- Applicant must either be a Singapore Citizen or Permanent Resident of Singapore and;
- Applicant must be at least 21 years old and;
- Applicant must achieve at least 75% attendance, and pass all examinations/assessments and;
- Applicant is taking the course for the first time
BridgingMinds reserves the right to charge the full course fee (without subsidy) if any of the conditions above are not met.
Singapore Citizens aged 25 years and above will be able to utilize their Skillsfuture Credits to offset against nett fee payable
Additional Notes
Re-assessment Fee at $30 (before GST)
Course Pre-Requisites
Price
| Course Fee Payable | ||
|---|---|---|
| Original Fee | Before GST | With GST (9%) |
| Course Fee | $1,650.00 | $1,798.50 |
| Individual Pricing (Fee payable to Training Provider) | Before GST | With GST (9%) |
| SSG subsidy MC >40 years old (For Singapore Citizens only) | $495.00 | $643.50 |
| SSG subsidy_< 40 years old (For Singapore Citizens) and All Singapore Permanent Residents | $825.00 | $973.50 |
| Corporate Pricing (Fee payable to Training Provider) | ||
| Non-SME | Before GST | With GST (9%) |
| SSG subsidy MC >40 years old (For Singapore Citizens only) | $495.00 | $643.50 |
| SSG subsidy_< 40 years old (For Singapore Citizens) and All Singapore Permanent Residents | $825.00 | $973.50 |
| SME | Before GST | With GST (9%) |
| SSG subsidy SME (For All Singapore Citizens & All Singapore Permanent Residents) | $495.00 | $643.50 |
Please note that prices are subjected to change.
