CERT/CSIRT

FP-CYB-007-1.2
Advanced
5 days
35 hours

Develop the skills you need to become a key player in IT security. Learn how to cope and react in the event of an incident.

Target audience

This course is aimed at all cybersecurity professionals, CISOs, CIOs and IT project managers.

Prerequisites

Basic knowledge of cybersecurity and general concepts.

Objectives

  • Gain an in-depth understanding of the roles, responsibilities and functions of a CERT/CSIRT
  • Implement incident management processes
  • Coordinate with national and international players to strengthen resilience and collaboration
  • Use a threat management tool

Evaluation methods

Practical exercises: attack scenarios.

Certification

At the end of the course, trainees will be invited to take a skills test. If they pass, they will be awarded the “CERT/CSIRT” certification, issued by Hexagone Executive.

Programme

  1. CERT/CSIRT, classification
    • Definitions and roles
    • Features and challenges
  2. Centralisation of support requests for security incidents
    • Process
    • Tools and methods
    • Structure and organisation of a management system
  3. Setting up cyber intervention groups
    • Team building
    • Work methodology
    • Incident simulation
  4. Establishment and monitoring of a vulnerability database
    • Creation of the database
    • Good maintenance practices
    • Vulnerability data
  5. Coordination with national and international players
    • National and international communication protocols
    • Global incident management
  6. Using MISP
    • Presentation of the tool
    • Configuration and use
    • Integration into incident response

Register to a session

999 999

Per trainee

Intra-company

Would you like to organise this training course in your company? Contact us for more information.