Contact Us

Incident Response Training

With Cybersecurity incidents becoming more prevalent across the globe, it is now a matter of when not if something will occur. Our training will help your team understand the phases that are normally part of an incident and what role they would each need to play according to your own response plan.

Equip your team with the foundational knowledge they need to reduce the impact of a cyberattack.

Start With the Basics

Although most people have been in some kind of incident in their lives, most have never had the pleasure/terror of being in a cybersecurity incident. This means they often do not know what their role is supposed to be or know how people may respond under pressure, especially when the organisation is under attack.

Through this training, your team will learn the important concepts to be mindful of during an incident namely: succinct communication, time is of the essence, essential facts, pressure, filtering and focus, splitting work amongst teams, reporting to management, recording and logging all actions, debrief after each incident, and regular practice.

Your training session will cover:

  • A simulated fictitious incident where two teams need to work together to resolve the incident as quickly as possible
  • Suitable for business or techincal people of all levels
  • Provides participants the opportunity to gain first-hand experience of key concepts in an incident
  • Covers each phase of the NIST Incident Response Lifecycle
  • Prepares teams with the foundational knowledge of how their colleagues respond under pressure
  • Sets the groundwork for a common language and understanding before moving to more advanced exercises (e.g. tabletop exercises, purple team)
  • Includes a pre-training session to customise the training based on desired outcomes and to cater for specific roles according to your incident response plan

NIST SP 800-61 Rev. 3: Incident Response Life Cycle

Key Features

  • Dropped in the deep end

    Teams work together to resolve an actual “incident” as quickly as possible

  • On-site or remote

    The majority of each team need to be in the same location but can be remote from one another

  • Repetition for learning

    Participants have multiple iterations through an incident to solidify core concepts

  • Teamwork

    Fosters teamwork, collaboration and understanding about their colleagues

  • Industry standard

    Covers the NIST Incident Response Lifecycle

  • Foundations for advanced topics

    Prepares your teams for more advanced exercises (e.g. playbooks, tabletops, adversary emulation)

Prepare for when the worst occurs

Equip your team with the knowledge they need to reduce the impact of a cyberattack

Book Incident Response Training now