Cyber Security and Incident Response for Managers

Upskilling Course, 40 Academic Hours

Apply Incident Response Aspects and Methodologies in Theory and Practice

Designed for cybersecurity managers who are tasked with meeting an ever-growing need for managing security incidents, this course provides an introduction to Incident Response and teaches participants how to handle and manage common security incidents. Attending this course will prepare you and your organization’s cybersecurity team to handle, investigate, and act according to common incident response standards such as the NIST Incident Response Plan and the MITRE Attack frameworks.

By enrolling in this course, you'll be able to manage and coordinate an effective response to cyber security incidents.

Who Is This Course For?

  • Security and IT decision makers 
  • CISOs
  • Incident responders and team leaders 
  • SOC and security managers 
  • Cybersecurity leaders 
  • System administrators 
  • Cyber architects
  • Consultants


  • Basic knowledge of Microsoft Operating Systems 
  • Understanding of networks and protocols 
  • Knowledge of monitoring and security devices 
  • IT background

Learning Objectives

  • Understand the Incident Response plan and methodologies 
  • Execute a security preparation plan

What You'll Get...

Professional Supervisor and Instructors

Supervising all Wawiwa Cyber courses is Mr. Nadav Nachmias, Head of Cybersecurity Programs at Wawiwa.
The course instructors are cybersecurity professionals with hands-on experience as well as training skills. The technical level of the course can be adjusted according to the audience.
Nadav Nachmias Head of Cybersecurity Programs

Nadav Nachmias

Head of Cybersecurity Programs

Nadav is a Cybersecurity Specialist with over 15 years of experience, focusing on Cybersecurity strategies, architecture, and workforce empowerment. His practical experience made it intuitive for him to develop diverse training programs and materials in several Cybersecurity fields (including Cybersecurity Management, Incident Handling and Response, and Cyber Forensics).

What Do Graduates Have to Say?

Course Syllabus

Module 1: Event Handling Methodologies (IR) (7 Theoretical Hours)

  • Cybersecurity Technologies 
  • Cyber Security Operation Center (SOC)
  • SOC Building Blocks 
  • Common Cybersecurity Terminology 
  • Internal/External Communication 
  • Critical Assets 
  • Risk Assessment 
  • Events vs. Incidents 
  • NIST Framework 
  • IR Phases

Module 2: Cyber Simulations (2.5 Practical Hours)

  • Simulation of Actual Cyber Use Cases

Module 3: Response to Cyber Events (2 Theoretical Hours, 4 Practical Hours)

  • Recording and Documenting Incidents 
  • Incident Reports 
  • Monitoring and Investigation Tools 
  • Common Security Mitigation Tools 
  • Best Practices for Handling Cybersecurity Incidents

Module 4: Introduction to the World of Attack (2.5 Theoretical Hours, 1 Practical Hour)

  • Introduction to Cyber Attacks 
  • Threat Actors 
  • Threat Vectors 
  • Attack Cyber Kill Chain 
  • Common Terminology

Module 5: NIST 800-61R2 & MITRE ATTACK (8 Theoretical Hours)

  • Incident Handling Check-List According to NIST 
  • Selecting a Team Model 
    • How to Organize Incident Response 
    • Establishing a Formal Incident Response Capability 
    • Create an Incident Response Policy 
    • Define an Incident Response Plan 
    • Develop Incident Response Procedures

Module 6: Maintain Tactics, Techniques and Procedure (TPP) Maturity (5 Theoretical Hours)

  • Get to Know the Capacity Maturity Model (CMM) Module
  • Technological Audit Methodologies

Module 7: Automation and Orchestration (2 Theoretical Hours)

  • Introduction to Automation and Orchestration 
  • Familiarization with the Leading Technologies
  • SOAR – “The Good, The Bad, and The Ugly”

Module 8: Reports & BI (3 Theoretical Hours, 3 Practical Hours)

  • Data Analysis from a Manager’s Perspective 
  • Write C-Level Reports 
  • How to Read a Technical Report

Give your team the edge they need to succeed with our comprehensive courses, tailored to your specific needs.

Interested in more details?

We’d be happy to answer all your questions!

Partner with Wawiwa to offer tech training programs in less than 6 months!

Wawiwa bridges the tech skills gap by reskilling people for tech professions in high demand. There are millions of tech vacancies and not enough tech professionals with the relevant knowledge and skills to fill them. What the industry needs of employees is not taught in long academic degrees. Wawiwa helps partners around the world to reskill, and upskill people for tech jobs through local tech training centers or programs. The company utilizes a proven training methodology, cutting-edge content, digital platforms for learning and assessment, and strong industry relations, to deliver training programs that result in higher employability and graduate satisfaction. This, in turn, also creates a strong training brand and a sustainable business for Wawiwa’s partners.