Get in Touch

Course Outline

Introduction to ISO/IEC 27035

  • Overview of the parts and structure of ISO/IEC 27035
  • Relationship with ISO/IEC 27001 and other relevant standards
  • Key terms, definitions, and concepts

Incident Management Principles

  • Understanding threats, vulnerabilities, and risks
  • Incident categories and classification methods
  • Stages of the incident lifecycle

Planning an Incident Management Program

  • Defining scope and objectives
  • Clarifying roles, responsibilities, and escalation paths
  • Establishing incident response policies and procedures

Incident Detection and Reporting

  • Identifying indicators of compromise and early warning signs
  • Utilizing internal and external reporting channels
  • Maintaining accurate incident logs and records

Incident Analysis and Evaluation

  • Gathering and preserving evidence
  • Applying root cause analysis techniques
  • Conducting impact assessments and risk evaluations

Incident Response, Containment, and Recovery

  • Implementing containment strategies and communication plans
  • Executing threat eradication and vulnerability mitigation
  • Performing system recovery and validation

Post-Incident Activities and Continual Improvement

  • Drafting incident reports and documentation
  • Deriving lessons learned and implementing corrective actions
  • Integrating improvements into the ISMS

Summary and Next Steps

Requirements

  • Familiarity with information security management concepts
  • Knowledge of ISO/IEC 27001 or related standards
  • Previous experience in IT security or incident response roles

Audience

  • Information security officers and managers
  • Leaders of incident response teams
  • Risk and compliance professionals
 35 Hours

Number of participants


Price per participant

Testimonials (1)

Provisional Upcoming Courses (Require 5+ participants)

Related Categories