Course Details

Previous Page


Information Security Incident Management (Part 1)


Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number


Overview/Description
In this course, the candidate will learn how to plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents. This course helps prepare the student for the CISM exam Domain 4.

Target Audience
Security practitioners who have at least five years of work experience in the field of information security, and with at least three years in the role of information security manager

Prerequisites
None

Expected Duration (hours)
0.5

Lesson Objectives

Information Security Incident Management (Part 1)

  • start the course
  • describe incident management concepts
  • define components of an incident response plan (IRP)
  • map the BCP and DRP to the IRP
  • specify methods for incident classification and categorization
  • define incident containment methods
  • describe notification and escalation processes
  • define roles and responsibilities in security Incidents
  • know IRT training, tools, and equipment
  • classify forensic requirements for handling evidence
  • describe security incident management
  • Course Number:
    sp_cesm_a07_it_enus