Cyber Security and Incident Response for Managers
Upskilling Course, 40 Academic Hours
Apply Incident Response Aspects and Methodologies in Theory and Practice
- Level: Advanced
Designed for cybersecurity managers who are tasked with meeting an ever-growing need for managing security incidents, this course provides an introduction to Incident Response and teaches participants how to handle and manage common security incidents. Attending this course will prepare you and your organization’s cybersecurity team to handle, investigate, and act according to common incident response standards such as the NIST Incident Response Plan and the MITRE Attack frameworks.
By enrolling in this course, you'll be able to manage and coordinate an effective response to cyber security incidents.
Who Is This Course For?
- Security and IT decision makers
- CISOs
- Incident responders and team leaders
- SOC and security managers
- Cybersecurity leaders
- System administrators
- Cyber architects
- Consultants
Prerequisites
- Basic knowledge of Microsoft Operating Systems
- Understanding of networks and protocols
- Knowledge of monitoring and security devices
- IT background
Learning Objectives
- Understand the Incident Response plan and methodologies
- Execute a security preparation plan
What You'll Get...
- Course presentation as a PDF file
- Cheat sheets and useful documentation
- “Swiss Army Knife” - 3Gb of IR tools
- 10.5 hours of practical learning experience through hands-on activities
- A Wawiwa certificate upon successful completion of the course
Professional Supervisor and Instructors
Supervising all Wawiwa Cyber courses is Mr. Nadav Nachmias, Head of Cybersecurity Programs at Wawiwa.
The course instructors are cybersecurity professionals with hands-on experience as well as training skills. The technical level of the course can be adjusted according to the audience.
Nadav Nachmias
Head of Cybersecurity Programs
Nadav is a Cybersecurity Specialist with over 15 years of experience, focusing on Cybersecurity strategies, architecture, and workforce empowerment. His practical experience made it intuitive for him to develop diverse training programs and materials in several Cybersecurity fields (including Cybersecurity Management, Incident Handling and Response, and Cyber Forensics).
What Do Graduates Have to Say?
"I always found interest in cybersecurity. I had a passion for this huge field that keeps evolving. I looked for courses online, and found that most of them are very hands off, a video running on a website. Then I found Wawiwa’s Cybersecurity program. I registered and throughout the program, actually found myself looking forward to class. It’s a live session, with a lot of practical work, working on real-life cyber tools and experiencing what they can do. The instructors have real-life stories and examples from the field to get points across. It makes the program really exciting!”
Course Syllabus
Module 1: Event Handling Methodologies (IR) (7 Theoretical Hours)
- Cybersecurity Technologies
- Cyber Security Operation Center (SOC)
- SOC Building Blocks
- Common Cybersecurity Terminology
- Internal/External Communication
- Critical Assets
- Risk Assessment
- Events vs. Incidents
- NIST Framework
- IR Phases
Module 2: Cyber Simulations (2.5 Practical Hours)
- Simulation of Actual Cyber Use Cases
Module 3: Response to Cyber Events (2 Theoretical Hours, 4 Practical Hours)
- Recording and Documenting Incidents
- Incident Reports
- Monitoring and Investigation Tools
- Common Security Mitigation Tools
- Best Practices for Handling Cybersecurity Incidents
Module 4: Introduction to the World of Attack (2.5 Theoretical Hours, 1 Practical Hour)
- Introduction to Cyber Attacks
- Threat Actors
- Threat Vectors
- Attack Cyber Kill Chain
- Common Terminology
Module 5: NIST 800-61R2 & MITRE ATTACK (8 Theoretical Hours)
- Incident Handling Check-List According to NIST
- Selecting a Team Model
- How to Organize Incident Response
- Establishing a Formal Incident Response Capability
- Create an Incident Response Policy
- Define an Incident Response Plan
- Develop Incident Response Procedures
Module 6: Maintain Tactics, Techniques and Procedure (TPP) Maturity (5 Theoretical Hours)
- Get to Know the Capacity Maturity Model (CMM) Module
- Technological Audit Methodologies
Module 7: Automation and Orchestration (2 Theoretical Hours)
- Introduction to Automation and Orchestration
- Familiarization with the Leading Technologies
- SOAR – “The Good, The Bad, and The Ugly”
Module 8: Reports & BI (3 Theoretical Hours, 3 Practical Hours)
- Data Analysis from a Manager’s Perspective
- Write C-Level Reports
- How to Read a Technical Report
Give your team the edge they need to succeed with our comprehensive courses, tailored to your specific needs.
Interested in more details?
We’d be happy to answer all your questions!
Partner with Wawiwa to offer tech training programs in less than 6 months!
Wawiwa bridges the tech skills gap by reskilling people for tech professions in high demand. There are millions of tech vacancies and not enough tech professionals with the relevant knowledge and skills to fill them. What the industry needs of employees is not taught in long academic degrees. Wawiwa helps partners around the world to reskill, and upskill people for tech jobs through local tech training centers or programs. The company utilizes a proven training methodology, cutting-edge content, digital platforms for learning and assessment, and strong industry relations, to deliver training programs that result in higher employability and graduate satisfaction. This, in turn, also creates a strong training brand and a sustainable business for Wawiwa’s partners.