Aim of the course:

Master the concepts, approaches, methods, tools and techniques that enable an effective Information Security Incident
Management according to ISO/IEC 27035
- Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
- Acquire the expertise to support an organization to effectively implement, manage and maintain an Information Security
Incident Response plan
- Acquire the competence to effectively advise organizations on the best practices of Information Security Incident
Management
- Understand the importance of establishing well-structured procedures and policies for Incident Management processes
- Develop the expertise to manage an effective Incident Response Team

Target group:

This training course is intended for:
-Professionals actively involved in information security management
-IT managers responsible for overseeing information security programs
-Security professionals who aspire to advance into leadership roles, such as security architects, security analysts, and
security auditors
-Professionals responsible for managing information security risk and compliance within organizations
-Experienced CISOs seeking to enhance their knowledge, stay up to date with the latest trends, and refine their leadership skills
-Executives, including CIOs, CEOs, and COOs, who play a crucial role in decision-making processes related to information security
-Professionals aiming to achieve executive-level roles within the information security field

Prerequisites:

Varasem praktiline kokkupuude infoturbega või auditeerimisega.

Topics:

Day 1 Introduction to Information Security Incident Management concepts as recommended by
ISO/IEC 27035
-Course objectives and structure
- Standards and regulatory frameworks
- Information Security Incident Management
- ISO/IEC 27035 core processes
- Fundamental principles of Information Security
- Linkage to business continuity
- Legal and ethical issues

Day 2 Designing and preparing an Information Security Incident Management plan
- Initiating an Information Security Incident
Management Process
- Understanding the organization and clarifying
the information security incident management
objectives
- Plan and prepare
- Roles and functions
- Policies and procedures

Day 3 Enacting the Incident Management process and handling Information Security incidents
- Communication planning
- First implementation steps
- Implementation of support items
- Detecting and reporting
- Assessment and decisions
- Responses
- Lessons learned
- Transition to operations

Day 4 Monitoring and continual improvement of the Information Security Incident
Management plan
- Further analysis
- Analysis of lessons learned
- Corrective actions
- Competence and evaluation of incident managers
- Closing the training

Day 5 Certification Exam

Study results:

Master the concepts, approaches, methods, tools and techniques that enable an effective Information Security Incident
Management according to ISO/IEC 27035
- Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
- Acquire the expertise to support an organization to effectively implement, manage and maintain an Information Security
Incident Response plan
- Acquire the competence to effectively advise organizations on the best practices of Information Security Incident
Management
- Understand the importance of establishing well-structured procedures and policies for Incident Management processes
- Develop the expertise to manage an effective Incident Response Team

Graduation document:

TalTech certificate

Language:

English

Lecturer:

Registration deadline:

27.11.2023 23:59

Timetable: