Incident Response for Business Professionals

Expand all

Course Description

Access IRBIZ Readiness Assessment here

This Incident Response for Business Professionals Certification training course covers incident response methodsand procedures are taught in alignmentwith industry frameworkssuch as US-CERT’s NCISP (National Cyber Incident Response Plan), and Presidential Policy Directive (PPD) 41 on Cyber Incident Coordination Policy. It is ideal for candidates who have been tasked with managing compliance with state legislation and other regulatory requirementsregarding incident response, and for executing standardized responses to such incidents. The course introduces proceduresand resources to comply with legislative requirements regarding incident response.This course is designed to assist students in preparing for the CertNexus Incident Responder Credential (CIR-110). What you learn and practice in this course can be a significant part of your preparation. 

Course Objectives:

In this course, you willunderstand,assess and respond to security threats and operate a system and network security analysis platform.

You will:

• Explain the importance of best practices in preparation for incident response
• Given a scenario, execute incident response process
• Explain general mitigation methods and devices
• Assess and comply with current incident response requirements.

Course Outline

Lesson 1: Assessment ofInformation Security Risks

       Topic A: TheImportance of Risk Management 

       Topic B: Integrating Documentation into Risk Management 

Lesson 2: Response to Cybersecurity Incidents 

       Topic A: Deployment ofIncident Handling and Response Architecture 

       Topic B: Containmentand Mitigation of Incidents 

       Topic C: Preparationfor Forensic Investigation as a CSIRT 

Lesson 3: Investigating Cybersecurity Incidents 

       Topic A: Use a Forensic Investigation Plan 

       Topic B: Securely Collect and AnalyzeElectronic Evidence 

       Topic C: Follow Up on the Results of an Investigation 

Lesson 4: Complying with Legislation

       −Examples of Legislation (if this is covered in above topics, no need to include here) GDPR, HIPPA, Elections

       −Case study: Incident Response and GDPR(Using GDPR legislation, create a response that is compliant with it

       – this could   be discussion-basedactivity as well.)

       −StateLegislation Resources and Example – Search terms to find state legislation 

              −Using NYS as example use the NYS Privacy Response act or other legislation to create a similar case study as previous.

              −Provide answers on when to use federal versus state and do you have to follow both?

Appendix C: Security Resources

Exam

Exam Codes              ARZ-110
Launch Date              July 2019
Sunset Date              Q4 2020 (est.)
Target Candidate     This course is designed primarily for IT leaders and company executives who are responsible for complying with incident response legislation. This course focuses on the knowledge, resources, and skills necessary to comply with incident response, and incident handling process requirements.
Exam Description     This exam will certify that the candidate can assess and respond to security threats and operate a system and network security analysis platform.
Number of Items       10
Item Formats              Multiple Choice/Multiple Response/True-False
Exam Duration           15-30 minutes (on average)
Exam Options            Online via the CHOICE LMS
Passing Score            8 out of 10 (80%)

Learning Path

• Please contact us for suggestions.

• CyberSAFE
• CyberSec First Responder
• Cyber Secure Coder
• IoT Security Practitioner Certification
• AI for Business Professionals Certification

Ways to Attend

• Attend a public course, if there is one available. Please check our schedule, or register your interest in joining a course in your area.
• Private onsite Team training also available, please contact us to discuss. We can customise this course to suit your business requirements.