Module #1 Introduction to Incident Response Overview of incident response, importance, and benefits
Module #2 Cybersecurity Incident Response Frameworks Overview of popular incident response frameworks (e.g. NIST, SANS, ISO 27001)
Module #3 Key Components of Incident Response Understanding people, process, and technology components of incident response
Module #4 Threat Intelligence and Indicators of Compromise Understanding threat intelligence, IOCs, and threat hunting
Module #5 Incident Classification and Categorization Classifying incidents by type, severity, and impact
Module #6 Incident Triage and Prioritization Triage and prioritization of incidents based on severity and impact
Module #7 Incident Response Plan Development Creating an incident response plan, roles, and responsibilities
Module #8 Incident Response Team Structure and Roles Defining incident response team roles, responsibilities, and communication
Module #9 Incident Response Tooling and Technology Overview of incident response tools, including security information and event management (SIEM) systems
Module #10 Incident Identification and Detection Methods for detecting incidents, including monitoring and alerting
Module #11 Incident Containment and Isolation Containing and isolating incidents to prevent further spread
Module #12 Initial Incident Response and Triage Initial incident response activities, including triage and assessment
Module #13 Incident Eradication and Malware Removal Removing malware and eradicating the incident
Module #14 Incident Recovery and System Restoration Restoring systems and data after an incident
Module #15 Incident Post-Incident Activities Post-incident activities, including lessons learned and reporting
