(Click Category to List Courses)
42 - IT-S Information Technology - Security and Audit
IT-S 153 - Cyber Incident Handling & Disaster Response
Code | Start Date | Duration | Venue | |
---|---|---|---|---|
IT-S 153 | 07 October 2024 | 5 Days | Istanbul | Registration Form Link |
IT-S 153 | 04 November 2024 | 5 Days | Istanbul | Registration Form Link |
IT-S 153 | 30 December 2024 | 5 Days | Istanbul | Registration Form Link |
Course Description
An incident response plan is a set of standards that assist an incident handler or incident response analyst in identifying, responding to, mitigating and recovering an organization’s data from cybersecurity incidents. Cybersecurity plans address issues such as cybercrime, reputation damage, data loss and service outages that endanger day-to-day office activities. It is vital for a business to have a well-defined incident response process to alleviate the likelihood of falling victim to the latest cyberattacks and severe security breaches.
Course Objectives
- Investigate and report on cybersecurity issues and trends.
- Conduct forensic collections, threat analysis and intrusion correlation, as well as track direct system remediation as incidents occur.
- Evaluate incidents in terms of urgency, possibilities and potential impacts, as well as organize and improve remediation tasks.
- Manage business cyber-defense incident response endeavors.
- Employ incident data to detect exposures and recommend speedy remediation.
- Evaluate logs to trace and remediate likely network security risks.
Who Should Attend?
- Incident handlers
- Risk assessment administrators
- Penetration testers
- Cyber forensic investigators
- Venerability assessment auditors
- System administrators
- System engineers
- Firewall administrators
- Network managers
- IT managers
- IT professionals
Course Details/Schedule
Day 1
- Introduction
- Purpose and Scope
- Document Structure
- Organizing a Computer Security Incident Response Capability
- Events and Incidents
- Need for Incident Response
- Incident Response Policy, Plan, and Procedure Creation
- Incident Response Team Structure
- Incident Response Team Services
Day 2
- Handling an Incident
- Preparation
- Detection and Analysis
- Containment, Eradication, and Recovery
Day 3
- Post-Incident Activity
- Lessons Learned
- Using Collected Incident Data
- Evidence Retention
- Incident Handling Checklist
- Coordination and Information Sharing
- Information Sharing Techniques
- Granular Information Sharing
Day 4
- Introduction to Disaster Recovery and Business Continuity
- Business Continuity Management (BCM)
- Risk Assessment
- Business Impact Analysis (BIA)
- Business Continuity Planning (BCP)
Day 5
- Data Backup Strategies
- Data Recovery Strategies
- Virtualization-Based Disaster Recovery
- System Recovery
- Centralized and Decentralized System Recovery
- Disaster Recovery Planning Process
- BCP Testing, Maintenance, and Training