This course provides practical guidelines on responding to incidents effectively and efficiently as part of an incident response program. Primary topics include detecting, analyzing, prioritizing, and handling cyber incidents. Real-world examples and scenarios to help provide knowledge, understanding, and capacity for effective cyber incident analysis and response.
This advanced level course is designed to teach students the fundamental of cyber incident analysis and responses.
Objectives
- Explain the concepts of cyber incident management
- Explain the preparation phase of cybersecurity incident management policies, services and procedures, the organizational structure, roles and personnel, and cyber incident management training and awareness programs
- Explain how to detect cyber incidents, cyber incident containment, eradication and recover and proactive and post incident services
Target Audience
Government and business IT professionals responsible for identifying and responding to cyber events for local government and private industry, cybersecurity personnel from local government and private industry, and critical infrastructure representatives from local government and private industry. These include but are not limited to: critical infrastructure; emergency management; finance and administration; health care; human resources; information technology; law enforcement; legal; public health; and risk management.