(Click Category to List Courses)

41 - IT-S Information Technology - Security and Audit

IT-S 153 - Cyber Incident Handling & Disaster Response

Code Start Date Duration Venue
IT-S 153 24 April 2023 5 Days Istanbul Registration Form Link
IT-S 153 19 June 2023 5 Days Istanbul Registration Form Link
IT-S 153 14 August 2023 5 Days Istanbul Registration Form Link
IT-S 153 09 October 2023 5 Days Istanbul Registration Form Link
IT-S 153 04 December 2023 5 Days Istanbul Registration Form Link
Please contact us for fees


Course Description

An incident response plan is a set of standards that assist an incident handler or incident response analyst in identifying, responding to, mitigating and recovering an organization’s data from cybersecurity incidents. Cybersecurity plans address issues such as cybercrime, reputation damage, data loss and service outages that endanger day-to-day office activities. It is vital for a business to have a well-defined incident response process to alleviate the likelihood of falling victim to the latest cyberattacks and severe security breaches. 

Course Objectives

  • Investigate and report on cybersecurity issues and trends. 
  • Conduct forensic collections, threat analysis and intrusion correlation, as well as track direct system remediation as incidents occur.  
  • Evaluate incidents in terms of urgency, possibilities and potential impacts, as well as organize and improve remediation tasks. 
  • Manage business cyber-defense incident response endeavors. 
  • Employ incident data to detect exposures and recommend speedy remediation. 
  • Evaluate logs to trace and remediate likely network security risks. 

Who Should Attend?

  • Incident handlers
  • Risk assessment administrators
  • Penetration testers
  • Cyber forensic investigators
  • Venerability assessment auditors
  • System administrators
  • System engineers
  • Firewall administrators
  • Network managers
  • IT managers
  • IT professionals

Course Details/Schedule

Day 1

  • Introduction  
  • Purpose and Scope 
  • Document Structure  
  • Organizing a Computer Security Incident Response Capability 
  • Events and Incidents 
  • Need for Incident Response  
  • Incident Response Policy, Plan, and Procedure Creation  
  • Incident Response Team Structure 
  • Incident Response Team Services  

Day 2

  • Handling an Incident
  • Preparation  
  • Detection and Analysis  
  • Containment, Eradication, and Recovery

Day 3

  • Post-Incident Activity 
  • Lessons Learned 
  • Using Collected Incident Data 
  • Evidence Retention 
  • Incident Handling Checklist 
  • Coordination and Information Sharing 
  • Information Sharing Techniques  
  • Granular Information Sharing

Day 4

  • Introduction to Disaster Recovery and Business Continuity
  • Business Continuity Management (BCM)
  • Risk Assessment
  • Business Impact Analysis (BIA)
  • Business Continuity Planning (BCP)

Day 5

  • Data Backup Strategies
  • Data Recovery Strategies
  • Virtualization-Based Disaster Recovery
  • System Recovery
  • Centralized and Decentralized System Recovery
  • Disaster Recovery Planning Process
  • BCP Testing, Maintenance, and Training