Back to Course

Incident Response

0% Complete
0/0 Steps
  1. Incident Response
    Incident Reporting
  2. Incident Response Use Cases
    Lab Setup
  3. Role Playing - Shift Manager
  4. Demonstrating: Investigating and Escalating
  5. Report from Malware Analyst
  6. Exercise 1.1: Exploring Suspicious Executable Detected using SIEM
  7. Exercise 1.2: Investigating Multiple Failed Logins using SIEM
  8. Exercise 3: Mitigating Risk
  9. Exercise 4.1: Asking the Right Questions
  10. Scenario 4.1: Asking the Right Questions
  11. Scenario 4.2: Suspicious or Malicious?
  12. Exercise 4.2: Reviewing the Shift Log
  13. Exercise 4.3: Investigating an Unauthorized Login Attempt
  14. Exercise 4.4: Investigating Firewall Traffic
  15. Exercise 4.5: Reviewing the Security Operations Mailbox
  16. Exercise 5.1: Reviewing New Intelligence
  17. Exercise 5.2: Assessing Threat Severity
  18. Exercise 6: Recommending Remediation
  19. Exercise 7: Conducting a Post-Incident Review
  20. Exercise 8: Communicating with Operations and Senior Management
  21. Business Continuity
    Business Continuity Plan Development
    8 Topics
  22. BCP Invocation Process
    2 Topics
  23. Emergency Procedures
    7 Topics
  24. Crisis Management Team
    10 Topics
  25. BCP Seating Plan
  26. Overview
  27. Disaster Recovery
    Scope of Critical Services
  28. Network Services
  29. Application Hosting Service
  30. File Hosting Services
  31. Call Centre and Voice Recording Services
  32. Regulatory Links
  33. Thin Client Environment
  34. Voice System (Non-Service Desk)
  35. Printing Services
  36. Recovery Time Objective (RTO) & Recovery Point Objective
  37. Single Point of Failure
  38. Redundancy Requirements
  39. Alternate Locations
  40. Contact Protocol
    4 Topics
Lesson 23, Topic 3
In Progress


Lesson Progress
0% Complete

Employee Role:
 Take immediate shelter under tables, desks, doorways or other objects
that will provide protection against flying glass and debris.
 Protect your face and head with your arms.
 Keep at least 15 feet away from windows to avoid flying glass.
 Step under a doorway or into a hall or corridor. Keep away from skylights
and large overhead light fixtures.
 Stay under cover until ordered to evacuate by the Fire Warden.
 After the major shock has subsided, the evacuation coordinator will check exit stairwells to ensure they are safe prior to leaving the building.
 Keep calm and do not run outdoors. Watch for falling debris or electrical
wires as you leave the building.
 Go directly to a safe area, away from the danger of being struck by falling
glass, bricks, electrical wires or other hazardous objects.
 Call the emergency numbers on the back of your wallet card if you detect
any injuries / fire and pull the fire alarm (if accessible).
 Help those who need first aid or need to be rescued.
 Do not move seriously injured personnel, unless their life is at threat. They
should be evacuated by emergency service personnel.
 When you exit the building, go directly to an area at least 100 meters from
all buildings and away from power lines that might be knocked down by
BCP Owner
 Call emergency services
 Arrange to take a headcount and identify injured
 Identify injuries for contact of related families and/or relatives
 Coordinate with HR for immediate referral to the nearest hospital and keep a
record of the hospitals where the injured are admitted.