Incident response is a key component of an enterprise business continuity program. Security threats have become not only more numerous and diverse but also more damaging and disruptive. Incident handling and response capability is very important for rapidly detecting incidents, minimizing loss and destruction, mitigating the security risk, and restoring computing services.
This 2-days course is designed to help incident handlers, CERT teams, and any Information Security Analyst to understand how to plan, create and utilise their systems for detecting and responding to current and emerging computer security threats and attacks that are targeted at a variety of operating systems and architectures.
This course is also provides a basic introduction to the main incident handling tasks and critical thinking skills that help an incident handler perform their daily work. Course attendees will learn how to build an incident respond policy and procedure, how to gather the information required to handle an incident, a deep understanding in technical skills to address a security incident, how to handle and respond to various types of malicious activity or compromise system, and how to deal with an incident response report.