Cybersecurity Incident Response Plan
A cybersecurity incident response plan not only is the first course of action after cybersecurity breach, but it is also a work product of the ISO/SAE 21434. In this video course, you will learn what its function in the continual cybersecurity activities context is and get an overview of all the topics that should be included on it.
Get an overview of the Cybersecurity Incident Response Plan as a work product for ISO/SAE 21434 and part of the cybersecurity continual activities
After the vulnerability analysis including the corresponding exploitability analysis and TARA, there is a last remaining step to conclude the continuous cybersecurity activities, which is the vulnerability management process and defining a cybersecurity incident response. In this “Cybersecurity Incident Response Plan” video course, you will learn what its purpose, its role in the continual cybersecurity activities, and what should be included.
First, we will explain what a cybersecurity incident is and recapitulate on the process of continuous cybersecurity activities to give you a visual understanding of where the cybersecurity response plan takes place, what triggers it, and its role.
Once there is a common understanding of the cybersecurity response plan as a whole and as a work product of the ISO/SAE 21434, we will give you an overview of the contents that shall be included. Then, we will give a thorough explanation for each and some ISO/SAE 21434 recommendations.
Who the “Cybersecurity Incident Response Plan ” video course is made for
For project managers
Since the cybersecurity incident response plan defines the course of action in case of a cybersecurity breach, it is beneficial to have one in place as it lowers recovery time and costs. Therefore, knowing what the cybersecurity incident response plan should contain, as learned in this video course, is essential.
For quality managers
Yes, as cybersecurity is a new quality aspect and cybersecurity incidents should not happen. Nevertheless, a cybersecurity incident response plan must be in place to efficiently deal with incidents but also to comply with ISO/SAE 21434. Learn about this ISO/SAE 21434 work product in this video course.
Cybersecurity Incident Response Plan video course content
First, we will explain what an incident is as defined by ISO/SAE 21434 and go on to explain the purpose of the cybersecurity incident response, its role throughout the product lifecycle drawing from the context of continual cybersecurity activities, and when it is initiated.
II. Overview on Cybersecurity Incident Response Plan
Get an overview of what aspects the cybersecurity incident response plan should include in a visual presentation.
III. Remedial actions
Learn what remedial actions are, when they are defined, and why assigning responsibilities at this point is necessary.
IV. Communication Strategy
Recognize the importance of a communication strategy during the cybersecurity incident response for internal and external stakeholders and get examples of stakeholders involved.
As the cybersecurity response incident plan must be continuously updated and is unique to every incident, here we will explain what information can be gathered.
VI. Progress tracking
Understand the importance of tracking progress for the cybersecurity incident response plan and know the recommended of measures for tracking progress by ISO/SAE 21434.
VII. Criteria and actions for the closure
In this section, we will explain the importance of knowing when to stop the incident response.
VIII. Cybersecurity Incident Response Plan Sum Up
Finally, we will summarize what you have learned during the video course.