JC: Incident Response Management
This one-day course, designed for computer security incident response team (CSIRT) and security operations center (SOC) technical personnel with several months of incident handling experience, addresses techniques for detecting and responding to current and emerging computer security threats and attacks.
This course provides guidance that incident handlers can use in responding to complex threats and attacks, including persistent threats. Through interactive instruction, facilitated discussions, instructors help participants identify and then propose appropriate response strategies.
Participants also review more advanced types of activities related to incident handling such as threat hunting; artifact and malware analysis; vulnerability handling; and publishing and communicating information.
IT Risk Identification
IT Risk Assessment
Risk Response and Mitigation
Risk & Control Monitoring and Reporting