This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
Incident Response Management Foundation Training Course

Incident Response Management Foundation Training Course

SKU: 4854

Find out how to effectively manage and respond to a disruptive incident and take appropriate steps to limit the damage of a potential disruption to network availability and information security.

This course will provide an introduction to developing an incident response programme according to the requirements of the GDPR and NIS Directive.


One day


Classroom sessions from 9:00 am to 5:00 pm.


Achieve the Certified Incident Response Management Foundation (CIRM F) qualification (ISO 17024-certificated).

How to Book:

Simply book online to receive your booking confirmation and full joining instructions within 48 hours. We accept purchase orders from local authorities, government departments and other public-sector organisations, and will consider account facilities for large corporate customers. See our payment options page for details.

Book today

Course Locations

Price: £495.00
ex vat
call to book via purchase order


Learn how to properly detect, contain and mitigate disruptive incidents with this hands-on Foundation-level course.

This course provides practical know-how on the incident management process.

It will cover incident response management techniques including CSIRT (cyber security incident response team) services, the nature of incident response activities and the steps needed to contain the incident.

Attendees will benefit from interactive instruction and practical exercises.


What will you learn?

By taking this course you will learn about:

  • Effectively managing an incident from detection to follow-up;
  • Detecting, analysing and responding to various types of intrusions and threats;
  • The steps to follow when tackling cyber security incidents;
  • The role of the incident response team;
  • Formulating an incident response plan;
  • Incident scenarios for common attack vectors; and
  • Communications and reporting (CSIRT) under the General Data Protection Regulation (GDPR) and Network and Information Security (NIS).


CIRM F examination

Delegates take the CIRM F examination at the end of the course – a 60 -minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ. There is no extra charge for this.


Who should attend?

Cyber security teams, security managers and IT professionals responsible for maintaining network and information security. The course is applicable to individuals and teams managing and responding to security incidents, who have had no formal training in incident management.


Entry requirements

A good general understanding of cyber security principles and controls that underpin the protection of confidentiality, integrity and availability of data.

Customer Reviews

(0# of Ratings:)