Incident Response Planning seminar
25 May 2023 9:00am–12:30pm
For many organisations, it is not a matter of 'if' a cyber security incident happens, it is a matter of 'when'. This course is designed to provide organisations with important information and knowledge to execute one of the critical elements of incident response; preparation.
Agenda
Outcomes
Outcomes Upon completion of this seminar session, attendees will:
- Understand the NIST 800-61 incident response (IR) phases
- Appreciate the usefulness of cyber security policies and frameworks to IR
- Gain an understanding of the contemporary threat environment
- Design a Cyber Incident Response Plan or modify an existing plan
- Learn to create and tailor cyber incident playbooks
- Be familiar with common online incident analysis tools
- Appreciate the role of tabletop discussion exercises in IR planning and improvement
- Know about open-source tools to self-appraise IR process maturity
Approach
- Emphasis is on empowerment of staff and the importance of collaboration
- Provides an overview of cyber security incident response planning activities from a practical and pragmatic perspective
- Facilitated opportunities for attendees to share experiences and knowledge
Seminar Outline
- Introducing incident response – what is it, why do we need it?
- Overview of the NIST 800-61 Incident Response Lifecycle
- The role of Information Security Management Frameworks and Policies in IR
- The contemporary threat environment including an introduction to the MITRE ATT&CK framework
- Design a Cyber Security Incident Response Plan based on the provided template
- Good and bad metrics in cyber security
- IR playbooks – essential elements and examples of best practice
- Building an IR team and self-appraise the IR maturity
- Introduction to common, free, online incident analysis tools
About UQSchoolsNet Professional Learning experiences
Fast track your industry knowledge with the latest academic research outcomes at our Professional Learning events, presented in partnership with AUSCERT and The University of Queensland School of Engineering and Computer Science. You can share these crucial cybersecurity and computer science findings with colleagues throughout your school.
Venue
308 Queen St. Brisbane. UQ Brisbane City Campus
Room:
223
Other upcoming sessions
Design Thinking and UX at an AI level
4 Apr 2025