An introduction to incident response to prepare for, detect, contain, and recover from a cybersecurity breach. Understanding how incident response supports an organization's broader mission, approaches to incident response, phases of incident response, roles and responsibilities of an incident response team, and legal considerations.
Learning Objectives
The course aims to identify and classify different types of cybersecurity incidents and demonstrate the principles and practices of incident response and management. Students will learn to create and implement incident response plans and procedures, conduct thorough incident investigations including data collection and analysis, and apply the legal, regulatory, and ethical requirements for incident response and management.
Framework Connections
Work Roles
Feedback
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.