Education and Training Opportunities Catalogue (ETOC)

Click on different tabs to view the course relevant details. To launch ETOC, login into e-ITEP system with your login credentials.
View Course

<<
>>

Web Linkhttp://www.natoschool.nato.int/Academics/Resident-Courses/Course-Catalogue/Course-description?ID=106
Last Date Updated02/Jun/2023 2:26
Training InstitutionNATO - School Oberammergau (NSO)
DisciplineCyberspace Operations (COP)
AreaCyber Defence Operations (CD)
Depth of knowledge Level300 - Advance
NATO Course CertificationNATO Approved

Course CodeCOP-CD-31395
Course TitleCyber Incident Handling & Disaster Response Course
ETF Course CodeM6-110
Delivery MethodBlended
Course DescriptionThe aim of this course is to prepare students to address the nature and scope of cyber security incident handling services, including intrusion/incident detection, damage control, service continuity, forensic analysis, service/data restoration, and incident reporting.
Course NotesFor further information (e.g. list of eligibility requirements) please refer to the full course description via the above given web link.

Aim of the CourseTo address the nature and scope of cyber security incident handling services, including intrusion/incident detection, damage control, service continuity, forensic analysis, service/data restoration, and incident reporting.
Performance Objectives
No.Performance Objective (Performance Statement)Task Performance Statement (TRA)
1 Examine Incident Handling and Response (IHR) terminology, core concepts and methodologies, in accordance with a model framework
2 Examine best practices on establishing,managing and staffing an incident response team, such as Computer Security Incident Response Team (CSIRT) and Computer Emergency Response Team (CERT)
3 Comprehend and review current IR Policy and best practices and assess an organization’s adherence to them
4 Systematize disaster recovery concepts, the remediation process, and requirements for implementation in an organization
5 Assess the fundamentals of network- and host-based analysis tools and techniques
6 Examine the fundamentals of malware triage, handling and analysis


Course Language(s)

Structure of the CourseResident (1 wk) - eLearning (8 wk) - Resident (1 wk)

Active CourseYes
Course Active from01/Jan/2011
Course Deactivated on31/Dec/2028
Course Duration (in days)10.0
Pre-Req (System Non Verified)Pre-requisite(s): The students will be expected to know some basic information on operating systems, programming, networking, and information assurance. Preferably, to be graduates of the first two courses of the Cyber Security Professional Certificate P

Security ClearanceNU: NATO UNCLASSIFIED
Training AudienceM: NATO, PfP, MD, ICI and other nations as approved
ePrime Reference NumberACT.468

Tuition Fee per Student (Euro)0.00
Fees for Accommodation and Meals (Euro)0.00

Payment Authority

Select the Level 1 Eval associated with this course.
Level 1 EvalNone
The Level 2 Test dropdown currently only applies to SCORM compliant courses.
Level 2 TestNone
Two Step Application Override (Reqs approval for applying into Iteration)No
Submit course for ETOC UploadNo
Requires Secure AccessNo