GIAC Security Incident Response Fundamentals

Duration: From 2 days
Study Mode: Classroom / Online
Next Date: -
Dates

Overview

On this accelerated GIAC Security Incident Response Fundamentals course, you’ll gain an understanding of what an Incident is and how this approach may differ in an ICS Environment.

The ICS Security Incident Response Fundamentals course provides those at Practitioner or equivalent level with an understanding of the current cyber incident response challenges facing their ICS environments, including an understanding of how to best protect and support their organisations cyber incident response process and provide an understanding of the stages of the IR process, including the information required to be able to create an effective IR plan (based upon the ICS4ICS processes).

This course also benefits those participating in or engaging with an ICS Incident Response team for the first time, requiring vital knowledge to manage the day-to-day running of all aspects of security incident response for these environments.

In just 2 days, you’ll also learn how to:

  • Distinguish between an incident and an event
  • Understand the 6-stage ICS incident response lifecycle
  • Identify key roles in an ICS IR team
  • Navigate legal and regulatory aspects of cyber incident response
  • Handle various types of incidents effectively
  • Develop and implement an ICS-specific IR plan (based on ICS4ICS)

Through Firebrand’s Lecture | Lab | Review methodology, you’ll get certified at twice the speed of traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

Audience

This course is ideal for:

  • Anyone new to Cybersecurity in an ICS Incident Response environment
  • Non-ICS staff who need to understand ICS terminology and how it differs from their current roles
  • Professionals working in an ICS environment, including:
    • Site/Asset Operators
    • Procurement/Contract Staff
    • Supply Chain Staff
    • Site/Asset IT
    • Support Engineers
    • Site/Asset Physical Security/Facilities Manager Staff

Curriculum

Module 1: Introduction to the Incident Handling Process

  • What is an Incident and an Event and how do they differ?
  • What is Incident Response?
  • The challenges of ICS Incident Response
  • The IR lifecycle

Module 2: Preparation

  • Obtaining Leadership support
  • ICS IR Plans
  • Who gets involved?
  • What makes the CSIRT?
  • Jump Kit and Grab Bags

Module 3: Identification

  • Classification Levels
  • Managing the Information Flow
  • Evidence

Module 4: Containment

  • What is Containment?
  • Short-term Containment
  • Long-term Containment
  • Investigations

Module 5: Eradication

  • The main aims of eradication
  • Remove or restore?
  • Improvement after

Module 6: Recovery

  • Recovery Objectives
  • Validation
  • Post-Incident Monitoring

Module 7: Lessons Learned

  • The Report
  • Management Considerations
  • Bringing it all together

Prerequisites

There are no prerequisites for this accelerated course.

What's Included

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **

* For residential training only. Accommodation is included from the night before the course starts. This doesn't apply to online courses.
** Some exceptions apply. Please refer to the Exam Track or speak with our experts.
*** Pass the first time or train again for free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Benefits

Seven reasons why you should sit your course with Firebrand Training

  • Two training options. Choose between residential classroom-based and online courses
  • You'll be certified fast. With us, you’ll be trained in record time
  • Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
  • Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  • You’ll learn more. A day with a traditional training provider generally runs from 9am–5pm, with a nice long break for lunch. With Firebrand, you’ll get at least 12 hours/day of quality learning time with your instructor
  • You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  • You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals

*For residential training only. Doesn't apply for online courses
**Some exceptions apply. Please refer to the Exam Track or speak with our experts

Are you ready for the course? 

Get access to free practice tests for your course  Free Practice Test

Filter results
Sorry, no results!
{{ formatDate(date.startDate) }}
- {{ formatDate(date.endDate) }}
Status: {{ date.dateStatus }}
{{ date.studyMode }} {{ date.location }}
Language: {{ date.instructionLanguage }}
{{ date.priceWithoutVat }} ({{ date.priceWithVat }} inc. VAT)
Contact Us See Prices Book course >
Trustpilot