Use the code ‘FIREBRAND15’ at checkout for 15% off this month only!

Logo
NewsCase StudiesContactWhere are you? UK 🌐

15% Discount AvailableUse the code ‘FIREBRAND15’ at checkout

Security Incident Response Fundamentals

Code: skics202

Logo

What you'll learn

On this accelerated GIAC Security Incident Response Fundamentals course, you’ll gain an understanding of what an Incident is and how this approach may differ in an ICS Environment.

The ICS Security Incident Response Fundamentals course provides those at Practitioner or equivalent level with an understanding of the current cyber incident response challenges facing their ICS environments, including an understanding of how to best protect and support their organisations cyber incident response process and provide an understanding of the stages of the IR process, including the information required to be able to create an effective IR plan (based upon the ICS4ICS processes).

This course also benefits those participating in or engaging with an ICS Incident Response team for the first time, requiring vital knowledge to manage the day-to-day running of all aspects of security incident response for these environments.

In just 2 days, you’ll also learn how to:

  • Distinguish between an incident and an event
  • Understand the 6-stage ICS incident response lifecycle
  • Identify key roles in an ICS IR team
  • Navigate legal and regulatory aspects of cyber incident response
  • Handle various types of incidents effectively
  • Develop and implement an ICS-specific IR plan (based on ICS4ICS)

Through Firebrand’s Lecture | Lab | Review methodology, you’ll get certified at twice the speed of traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

Audience

This course is ideal for:

  • Anyone new to Cybersecurity in an ICS Incident Response environment
  • Non-ICS staff who need to understand ICS terminology and how it differs from their current roles
  • Professionals working in an ICS environment, including:
    • Site/Asset Operators
    • Procurement/Contract Staff
    • Supply Chain Staff
    • Site/Asset IT
    • Support Engineers
    • Site/Asset Physical Security/Facilities Manager Staff

Curriculum

25 modules

Module 1: Introduction to the Incident Handling Process

  • What is an Incident and an Event and how do they differ?
  • What is Incident Response?
  • The challenges of ICS Incident Response
  • The IR lifecycle

Module 2: Preparation

  • Obtaining Leadership support
  • ICS IR Plans
  • Who gets involved?
  • What makes the CSIRT?
  • Jump Kit and Grab Bags

Module 3: Identification

  • Classification Levels
  • Managing the Information Flow
  • Evidence

Module 4: Containment

  • What is Containment?
  • Short-term Containment
  • Long-term Containment
  • Investigations

Module 5: Eradication

  • The main aims of eradication
  • Remove or restore?
  • Improvement after

Module 6: Recovery

  • Recovery Objectives
  • Validation
  • Post-Incident Monitoring

Module 7: Lessons Learned

  • The Report
  • Management Considerations
  • Bringing it all together

Prerequisites

There are no prerequisites for this accelerated course.

Course Dates

Sorry, there are currently no dates available for this course. Please submit an enquiry and one of our team will contact you about potential future dates or alternative options.

FAQs

4 question

Yes, we do provide courses suitable for beginners. However, Firebrand's accelerated courses aren't easy and it's essential that you are interested and actively pursuing a career in IT.

Traditional training providers usually run their courses from 9am to 5pm. At Firebrand Training we maximise the number of learning hours to minimise the number of training days, so you’ll be back to your job as quickly as possible. You don’t waste time travelling to several courses and finding an exam centre after that.

Firebrand's accelerated courses are constantly reviewed. We ask our delegates for feedback after every course. We are official partners with leading vendors and therefore, we're provided with certification changes and updates, which we can then implement in our course delivery at a very early stage. This feedback is then analysed in view of changes or discrepancies. We will then address the topics mentioned and have a panel of subject matter experts provide us with valuable suggestions for improvement and solutions.

If you need to learn new skills and you want to be able to put them into practice quickly, then Firebrand is the right training company for you.

Our unique accelerated training method means that we are your fastest way to learn. By delivering training for up to 12 hours per day, seven days per week, with exam centres on-site, we ensure that you are trained and certified quicker than anywhere else, having spent less time out of the office away from the day job.

Can't find the answer you're looking for?

Our expert learning advisors are ready to help. Whether you need course recommendations, have technical queries, or want to discuss your learning goals, we're just a message away.

Related courses

All GIAC Courses
Logo

Train your team

Since 2001 we've trained 134,561 employees from thousands of large and small organisations, saving them more than one million hours in training time.

Learn More