World-Class Cybersecurity Training Services
NCSC Assured Building and Optimising Incident Response Playbooks
Learn to Create NIST Compatible Incident Response Playbooks
We have trained over 750 organisations including:
.png?width=800&height=362&name=FIFA_series_logo.svg%20(1).png){kind=logo}
.webp?width=147&height=104&name=F1%20Logo%20(1).webp)
%20(1).webp?width=147&height=48&name=1200px-Capita_logo_(2019)%20(1).webp){kind=logo}
The NCSC Assured Training in Building & Optimising Incident Response Playbooks
This NCSC Assured Training - Building and Optimising Incident Response Playbooks, teaches you how to create NIST SP 800-61 R2 and NIST CSF compatible incident response playbooks to respond to a variety of simple and complex cyber-attacks and data breaches.
Unlike a traditional crisis like an earthquake or flood, a cyber-crisis is often invisible and near impossible to detect in the early stages. In a majority of cyber-attacks, by the time a business detects the attack, it is often too late. The data has been stolen , the media knows about your data-breach and your customers are worried their personal data may be in the hands of criminals.
Target audience for the Playbooks Training Course
| IT Technicians | Service Managers |
| Level 1, Level 2, IT Support | BCP Managers |
| Network Engineers | CISOs / Heads of IT security |
| Windows, Unix and Max Engineers | Risk Managers |
| SOC Analysts (All Levels) | Heads of IT |
| IT Managers, Network Managers | Change Managers |
Personal & Organisational Benefits of the NCSC Assured Incident Response Playbooks Training
The Playbooks Training course offers several benefits to individuals who wish to upskill themselves and stay abreast with the most relevant skills usable in the current threat landscape. When run internally, the NCSC Assured Training in Building & Optimising Incident Response Playbooks (Playbooks) workshop brings significant benefits to an organisation. The playbooks training is also available as an eLearning (also called Self-paced Learning) option and as a virtual classroom training. For the virtual training we use Zoom.
Individual Benefits |
Organisational Benefits |
| Learn to create basic and advanced cyber incident response playbooks. | Significantly improve your organisation's speed of response to cyber-attacks. |
| Analyse, improve and optimise existing incident response procedures. | Achieve better legal and regulatory compliance and meet respective geographical breach notification requirements. |
| Create effective attack scenarios with supporting response playbooks. | When held internally, we conduct a consultative review of your existing response processes, procedures and playbooks. |
| Run effective cyber incident response workshops to support continuous improvement in cyber resilience processes and procedures. | Ensure continuity and consistency in both your technical and managerial responses during a regular incident or a cyber crisis. |
| Understand the role of SOAR (Security Orchestration and Response) and the tools that you can use to implement SOAR. | Learn to identify, addressing, and recover from cybersecurity threats, minimising operational disruption and potential losses. |
Continuing Professional Development
- (ISC)2 members can claim 8 CPE points after they complete the whole course and obtain the attendance certification.
- ISACA members can claim 8 CPE points after they complete the whole course and obtain the attendance certification.
Testing Playbooks with Cyber Tabletop Exercises
You can combine the Internal Playbooks training with our Cyber Crisis Tabletop Exercise workshop to formally test your playbooks in a simulated cyber-attack environment. You can find more information on the different types of Cyber Crisis Tabletop Exercises we conduct here:
1. Executive Tabletop Exercises
2. Operational Tabletop Exercises
3. Technical Tabletop Exercises
The playbooks training course was a good 'part-2' to the CIPR and went into greater depth in a number of areas. The day was fun and Amar kept us moving along at a good pace.
Enjoyed the course. Good mix of attendees and plenty of lively conversation. Amar steered us through it all admirably.
Overall the course was very good. I would strongly recommend this training to anyone who is involved in Cyber Security or has control of information assets.
It was a great workshop with a lot of interesting people and a great learning experience.
About the NCSC - National Cyber Security Centre
Launched in October 2016, the NCSC or National Cyber Security Centre is headquartered in London and brings together expertise from CESG (the information assurance arm of GCHQ), the Centre for Cyber Assessment, CERT-UK, and the Centre for Protection of National Infrastructure.
The NCSC Assured training is designed to assure high-quality training courses delivered by experienced training providers. The courses are assessed at two levels, namely, awareness and application.
This course has been certified for the application level of incident response in the areas of Risk Assessment, Business Continuity Planning and Incident Management. The Application level is for anyone looking for in-depth courses for their professional development.
The Chartered Institute of Information Security (CIISec) is the only pure-play information security institution to have been granted Royal Charter status and is dedicated to raising the standard of professionalism in information security. CIISec represents professionalism, integrity and excellence within the information and cybersecurity sector.
The NCSC Assured Training and the Chartered Institute of Information Security's (CIISec) accreditation enables organisations to distinguish between reputable courses and ones that have not been validated using a Government-endorsed assessment process.
Meet the Trainer
Amar Singh has a long history and experience in data privacy and information security. Amar has served as CISO for various companies, including News International (now News UK), SABMiller, Gala Coral, Euromoney and Elsevier. Amongst various other activities, Amar is a Global Chief Information Security Officer and Trusted Advisor to a number of organisations including a FTSE100 firm, and is chair of the ISACA UK Security Advisory Group. He also founded the not-for-profit cybersecurity service for charities, Give01Day.
.jpg?width=720&height=163&name=Amar_Singh_CISO%20(1).jpg)
Amar has the highest integrity and is trusted by FTSE100 companies with some of the most sensitive commercial information. He has been involved with highly sensitive forensic investigations.
He has the ability to deal with both technically-astute, board-level executives and lead an organisation's information security direction. Apart from his experience and abilities, Amar holds a number of industry-recognised certifications, such as ISO 27001 Certified ISMS Lead Implementer, MoR, CRISC and CISSP certification.
Amar is an industry-acknowledged expert and public speaker and is regularly invited to speak and share his insights by some of the largest and most respected organisations in the world including The BBC, The Economist’s Intelligence Unit, The Financial Times, SC Magazine, InfoSec Magazine, Computer Weekly, The Register and the AlJazeera English Channel.
