Cybersecurity – Incident Reporting and Response in Energy

This self-paced course will focus on the procedures of incident reporting such as identifying the factors that contributed to a cyber attack and addressing critical gaps in the most effective manner possible.

By the end of this course, you will be able to identify key factors in the cyber kill chain, recommend and prioritize measures to address gaps identified from the root cause analysis.

Course duration
Next start date
Recommended for mid-career professionals with at least three years of work experience, ideally within the IT sector or a related field, who are seeking new career opportunities in cybersecurity.
  • Identify the precursors and indicators of a cyber attack
  • Analyze network traffic and event logs to pinpoint the attack vector, intrusion point and time of the intrusion
  • Analyze information gathered from network traffic and log analysis along with interview insights to conduct a root cause analysis using a Fishbone Diagram and the 5 Why’s methodology
  • Identify appropriate measures to address gaps identified as in line with NIST SP.800-53r5
  • Complete a Six Sigma-based Prioritization Matrix to prioritize the measures identified to address gaps
  • Complete a standardized incident report including an executive summary, incident details summary, root cause analysis summary, failed controls summary, prioritization of recommendations and a conclusion
Learners will have access to a skills coach for support during this course.
Technical requirements
  • Word processor (e.g. Microsoft Word)
Recommended prerequisite courses
  • Cybersecurity - Vulnerability Assessment in Energy
Recommended prerequisite skills
  • N/A
Cybersecurity – Incident Reporting and Response in Energy