MGT535: Incident Response Team Management
This course discusses the often-neglected topic of managing an incident response team. Given the frequency and complexity of today's cyber attacks, incident response is a critical function for organizations. Incident response is the last line of defense.
Detecting and efficiently responding to incidents requires strong management processes, and managing an incident response team requires special skills and knowledge. A background in information security management or security engineering is not sufficient for managing incidents. On the other hand, incident responders with strong technical skills do not necessarily become effective incident response managers. Special training is necessary.
This course was originally developed by Dr. Eugene Schultz, the founder of the first U.S. government incident response team and an information security professional with over 26 years of experience. The course has been updated to address current issues such as advanced persistent threat, incident response in the cloud, and threat intelligence. Students will learn by applying course content through hands-on, skill-building exercises that include evaluating incident response procedures, table-top validation of procedures, incident response management role-playing in hypothetical scenarios, and hands-on experience in tracking incident status in hypothetical scenarios.
You Will Learn:
- Fundamentals of incident response
- How to establish requirements
- How to set up operations
- How to make operations work
- Legal and regulatory issues
- Training, education, and awareness
|MGT535.1: Incident Response Team Management|
CPE/CMU Credits: 6
|Who Should Attend|
No specific prerequisites are required for this course, but knowledge of technical terms is beneficial and will facilitate participation in class discussions. Prior to attending the course, it would be useful to gather statistics from your organization such as those listed below:
|Other Courses People Have Taken|
Other Courses People Have Taken
|What You Will Receive|
|Press & Reviews|
"Since I am fresh out of college this was a definite eye opener. This course was very valuable in that it gives a view of most tools available for auditing networks." - Ryan Awai, SANS student
"Valuable information to take back to work with me, as well as hands-on testing examples." - Carol Jones, SANS student
Take your learning beyond the classroom. Explore our site network for additional resources related to this course's subject matter.
*CPE/CMU credits not offered for the SelfStudy delivery method