Information Security Incident Management (ISO/IEC 27035)
Description: After completing the course, participants will be able to demonstrate the following competences:
- Plan and implement an effective incident response framework based on ISO/IEC 27035.
- Detect, report, and respond to information security incidents using appropriate procedures.
- Assign and coordinate roles within incident management and response teams.
- Utilize digital forensics techniques and tools in incident investigation.
- Evaluate incident outcomes and support continual improvement processes.
Previous skills/knowledge: Participants are expected to have the following basic knowledge:
- Familiarity with ISO/IEC 27001 and basic principles of information security.
- Understanding of organizational roles and responsibilities in IT security.
- General knowledge of digital systems and reporting processes.
Authorized Partners:
Teaching requirements: Trainers should meet the following requirements:
- Subject Matter Expertise: deep knowledge of ISO/IEC 27035-1, -2, -3, -4 and practical experience with incident response procedures.
- Certifications: recommended certifications include ISO/IEC 27001 Lead Implementer/Auditor and specialized qualifications in incident handling or digital forensics.
- Training & Practical Experience: minimum of 3 years in managing information security incidents, conducting simulations, and working with response teams and tools.
Objectives to achieve: The course aims to achieve the following objectives:
- Understand the structure and purpose of ISO/IEC 27035-1, -2, -3 and -4 standards.
- Gain practical skills in planning, detecting, reporting, and responding to security incidents.
- Learn how to structure and lead incident response teams and define their responsibilities.
- Become familiar with operational procedures and tools used in incident analysis and response.
- Apply incident learning techniques and support improvement of future response capabilities.
