National CAE Designated Institution
  • Online, Instructor-Led

Preparing for an incident is a critical function of an information technology organization. Adequate preparation will help a business recover faster and get back to normal operations. This course covers the tasks and skills necessary to develop an incident response as well as the people necessary for an incident response team. It will also cover the role of forensic investigations in the incident response process.

Learning Objectives

  • Create a prioritization scheme for identified events based on criticality determined during triage
  • Identify and document issues of concern that resulted from the incident response as part of an after action review
  • Critique an incident response plan in light of an after-action review and propose improvements to the plan
  • Utilize a risk assessment to develop and document an incident response plan.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Incident Response
  • Exploitation Analysis
  • Threat Analysis
  • Legal Advice and Advocacy

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.