Cyber Security Incident Response For Managers (CSIRM)

Cyber Security Incident Response
Cyber Security Incident Response For Managers (CSIRM)
Awareness - level course

This one-day awareness course is designed ​those who might be required to manage the response to a cyber-attack or breach.  The course introduces the concepts of incident response preparation together with the fundamentals of incident management, and assumes an awareness of information security and the need to respond to cyber-attacks or breaches.

This is a theory-based course with group discussions.

Should there be time and interest, there will also be an opportunity to take part in a Ransomware exercise to understand the basics of managing a response to this specific malware threat type.

How will I benefit?
This course will give you:

• An understanding of the importance of an effective incident response plan
• The ability to appreciate and evaluate risks to your organisations data based on your incident response plan
• An understanding of the principles of preparing and responding to a cyber event

For more information about this course, please see below

What will I learn?
The basics of the incident response process based on the CREST CSIR model

• You will understand the importance of cyber security frameworks
• You will gain insight to why an effective and robust incident response plan is necessary in today’s interconnected world
• An understanding of the technical capabilities that should be available when dealing with an incident
• An awareness of the myriad cyber threats that businesses and public bodies face today together with case studies enforcing why incident response preparation and management is key to mitigating business disruption
• You will find out how organisations become exposed to certain attacks or breaches and what can be done to mitigate this
• You will learn about employee security lapses and the importance of education programmes 

Who should attend?
Anyone responsible for the preparation or management of a cyber incident and the response to that incident, including:

• Incident managers
• Security officers and data protection representatives
• IT managers

For a course with more hands-on technical content, delegates should consider 7Safe’s CSIR, CMI and CCI courses.

COURSE OVERVIEW
Assuming a basic knowledge and understanding of your organisation’s
incident response plan, this course is ideally suited to those responsible for decision making, management planning or responding to a cyber event involving an attack or breach of a computer network. The course will detail how effective the response plan is with regard to a real-world attack or data breach This course is theory-based with
group discussions. Time permitting, a demonstration of 7Safe’s STOMP
Ransomware challenge will be made available to delegates wishing to
participate and understand realworld technical challenges involved in
responding effectively and swiftly to a cyber event
 

HOW WILL I BENEFIT?
This course will give you:

• An understanding of the importance of an effective incident response plan
• The ability to appreciate and evaluate risks to your organisation’s data based on your incident response plan
• An understanding of the principles of preparing and responding to a cyber event

COURSE PREREQUISITES:

• No CSIR technical knowledge is needed but an understanding of the requirements for information security is essential
• We recommend you refresh your knowledge and understanding of your organisation’s incident response plan

WHAT WILL I LEARN?

• You will understand the importance of cyber security frameworks
• You will gain insight as to why an effective and robust incident response plan is necessary in today’s interconnected world
• You will find out how organisations become exposed to certain attacks or breaches and what can be done to mitigate this
• You will learn about employee security lapses and the importance of education programmes
• You will have the chance of stopping a Ransomware attack and understand some of the methods such malware uses to obfuscate and prevent removal

WHO SHOULD ATTEND?

• Anyone involved in any management aspect of preparing for or managing a cyber security event

For a course with more hands-on technical content, delegates should
consider 7Safe’s CSIR course.
 

SYLLABUS
1. The Threat

2. Cyber Frameworks

3. Incident response plans including:
• Policies
• Procedures
• Standards
• Baselines
• Guidelines
4. Responding to an event

5. Education and training

6. STOMP challenge