Preparing for an incident is a critical function of an information technology organization. Adequate preparation will help a business recover faster and get back to normal operations. This course covers the tasks and skills necessary to develop an incident response as well as the people necessary for an incident response team. It will also cover the role of forensic investigations in the incident response process.
Learning Objectives
- Create a prioritization scheme for identified events based on criticality determined during triage
- Identify and document issues of concern that resulted from the incident response as part of an after action review
- Critique an incident response plan in light of an after-action review and propose improvements to the plan
- Utilize a risk assessment to develop and document an incident response plan.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Incident Response
- Exploitation Analysis
- Threat Analysis
- Legal Advice and Advocacy
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.