This course covers incident response methods and procedures taught aligned with industry frameworks such as US-CERT's NCISP (National Cyber Incident Response Plan), and Presidential Policy Directive (PPD) 41 on Cyber Incident Coordination Policy. It is ideal for candidates tasked with managing compliance with state legislation and other regulatory requirements regarding incident response, and for executing standardized responses to such incidents. The course introduces procedures and resources to comply with legislative requirements regarding incident response.
This course is designed to assist students in preparing for the CertNexus Incident Responder Credential (CIR-110). What you learn and practice in this course can be a significant part of your preparation.
In this course, you will understand, assess and respond to security threats and operate a system and network security analysis platform.
Lesson 1: Assessment of Information Security Risks
Topic A: The Importance of Risk Management
Topic B: Integrating Documentation into Risk Management
Lesson 2: Response to Cybersecurity Incidents
Topic A: Deployment of Incident Handling and Response Architecture
Topic B: Containment and Mitigation of Incidents
Topic C: Preparation for Forensic Investigation as a CSIRT
Lesson 3: Investigating Cybersecurity Incidents
Topic A: Use a Forensic Investigation Plan
Topic B: Securely Collect and Analyze Electronic Evidence
Topic C: Follow Up on the Results of an Investigation
Lesson 4: Complying with Legislation
General understanding of cybersecurity concerns.