Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction to ISO/IEC 27035
- Overview of the parts and structure of ISO/IEC 27035.
- Relationship with ISO/IEC 27001 and other relevant standards.
- Key terms, definitions, and foundational concepts.
Incident Management Principles
- Understanding threats, vulnerabilities, and associated risks.
- Incident categories and classification methods.
- Stages of the incident lifecycle.
Planning an Incident Management Program
- Defining scope and objectives.
- Establishing roles, responsibilities, and escalation paths.
- Developing incident response policies and procedures.
Incident Detection and Reporting
- Identifying indicators of compromise and early warning signs.
- Utilizing internal and external reporting channels.
- Maintaining accurate incident logs and records.
Incident Analysis and Evaluation
- Gathering and preserving evidence.
- Applying root cause analysis techniques.
- Conducting impact assessment and risk evaluation.
Incident Response, Containment, and Recovery
- Implementing containment strategies and communication plans.
- Eradicating threats and addressing vulnerabilities.
- Executing system recovery and validation.
Post-Incident Activities and Continual Improvement
- Documenting incident reports.
- Deriving lessons learned and implementing corrective actions.
- Integrating improvements into the ISMS.
Summary and Next Steps
Requirements
- Foundational knowledge of information security management concepts.
- Familiarity with ISO/IEC 27001 or related standards.
- Practical experience in IT security or incident response roles.
Target Audience
- Information security officers and managers.
- Incident response team leaders.
- Risk and compliance professionals.
35 Hours
Testimonials (1)
Speed of response and communication