This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
Incident Response Management Foundation Training Course

Incident Response Management Foundation Training Course

SKU: 4854

Find out how to effectively manage and respond to a disruptive incident and take appropriate steps to limit the damage of a potential disruption to network availability and information security. .

This course will provide an introduction to developing an incident response programme according to the requirements of the GDPR and NIS Directive.


One day


Classroom sessions from 9:00 am to 5:00 pm


CIRM F (ISO 17024-certificated)

How to Book:

Simply book online to receive your booking confirmation and full joining instructions within 48 hours. We accept purchase orders from local authorities, government departments and other public-sector organisations, and will consider account facilities for large corporate customers. See our payment options page for details.

Book today

Course Locations

Price: £495.00
ex vat
call to book via purchase order


Attend this course and learn how to:

  • Identify critical information assets;
  • Identify and evaluate existing security controls;
  • Identify and distinguish between vulnerabilities, risks and threats;
  • Perform a business impact analysis;
  • Plan and design an incident response management programme;
  • Develop an incident response team;
  • Devise incident response testing scenarios; and
  • Establish a framework for continual improvement.


At the end of this course, you should be able to: 

  1. Understand key definitions and legal requirements that underpin incident response.
  2. Identify the components of the cyber kill chain, recognise common cyber threats and understand common threat actors.
  3. Define the structure, role and responsibilities of the incident response team.
  4. Comprehend the seven stages of incident response. 
  5. Propose the steps to formulate and test an incident response plan and define the scope of a business impact analysis.
  6. Apply incident response techniques to common risk scenarios.
  7. Know the role of cyber resilience in supporting incident response management.
  8. Manage communications and reporting requirements under the General Data Protection Regulation (GDPR) and the Directive on security of network and information systems (NIS Directive). 

Target audience

  • Managers who are already involved in incident management with either an information security or data protection background.
  • Individuals with little experience who are keen to enter the field or broaden their knowledge of incident management with a professional qualification, such as:
    • Business managers 
    • Compliance managers 
    • IT managers
    • Helpdesk managers
    • Quality managers 
    • Project managers 
    • Risk managers 
    • Information security managers 
    • ISO 27001 lead auditors
    • IT and other staff, including HR, legal and business users 
    • PCI QSAs



There are no formal entry requirements but this is a professional course. It is assumed that attendees will have a good general understanding of cyber security principles and controls that underpin the protection of confidentiality, integrity and availability of data, gained through practical experience or reading.


CIRM F examination

Attendees take the CIRM F examination at the end of the course – a 60 -minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ. There is no extra charge for this.

Please note that all IBITGQ exams are now online exams, so you will need to bring a 'pop-up enabled' laptop/tablet to the venue.
Full details on how to access the exam will be provided by email 1-2 days before sitting the exam.


Customer Reviews

(0# of Ratings:)