The Training Course Overview

The Incident Response Plan serves as a roadmap for what to do when responding to a security incident, to ensure you have a strategic response rather than a reactive one.

Learn how to develop your Organizational Guide to:

 Prepare your incident response plan

  1. Back-up data and make sure you can re-install from the back-ups.
  2. Make sure everyone knows how to report a possible incident.
  3. Find good technical external incident response support.

Respond to an incident

  1. Isolate the problem – immediately get the device off the network
  2. Identify the type of incident and take the following action:
  3. Determine the scope of the incident Is it still ongoing?
  4. Determine if it can be properly controlled.
  5. Keep checking for the problem to return.

Recover after the crisis is over

  1. Notify all affected parties
  2. Re-set the user ID and password of the compromised device
  3. Patch all of the devices
  4. Reinstall software and data from back-ups as needed
  5. Incident Response Checklist