Incident Response & Crisis Management

• Security analysts and engineers involved in incident management
• IT and security managers responsible for crisis response
• CERT and SOC team members
• Risk managers and business continuity officers

This course prepares participants to manage cybersecurity incidents from detection to closure. Combining methodology with live simulations, trainees develop the technical and organizational skills to contain threats rapidly, coordinate response teams and minimize operational impact.

• Incident response lifecycle: preparation, detection, containment, recovery
• Forensic analysis fundamentals: evidence collection and chain of custody
• Coordination with internal teams, management and external stakeholders
• Crisis communication: internal escalation and public communication
• Post-incident review: root cause analysis and lessons learned
• Tabletop exercise: simulated ransomware incident