Course overview
ISO/IEC 27035 Incident Manager
ISO/IEC 27035 Incident Manager training enables you to acquire the necessary knowledge to support an organization in implementing an Information Security Incident Management plan based on ISO/IEC 27035. During this training course, you will also gain a thorough understanding of best practices used to manage Information Security Incidents.
Who Should Attend
- Information Security Incident managers
- Individuals responsible for Incident Response in an organization
- Information Security team members
- IT Managers
- IT system administration professionals
- IT network administration professionals
- IT auditors
- Members of Incident Response Teams
Course Outline
Day 1 Introduction to Information Security Incident Management concepts as recommended by ISO/IEC 27035
- Course objectives and structure
- Standards and regulatory frameworks
- Information Security Incident Management
- ISO/IEC 27035 core processes
- Fundamental principles of Information Security
- Legal and ethical issues
Day 2 Information Security Incident Management phases according to ISO/IEC 27035
- Initiating an Information Security Incident Management process
- Understanding the organization and clarifying the information security incident management objectives
- Plan and prepare
- Roles and functions
- Policies and procedures
- Communication planning
Day 3 Implementing an Information Security Incident Management Plan and Certification Exam
- First implementation steps
- Implementation of support items
- Detecting and reporting
- Assessment and decision
- Responses
- Lessons learned
- Transition to operation
Day 4 Certification Exam
Closing the training