Safeguarding Digital Infrastructure for IT & ITES Enterprises

Certified IT Risk and Incident Management Professional (CRIMP)

Training course

Training course

Training duration: 3 Days

Course Overview

The Certified IT Risk and Incident Management Professional (CRIMP) training equips professionals with the essential knowledge and practical skills to manage IT risks and respond effectively to incidents. Covering frameworks like ISO/IEC 27005, ISO/IEC 27035, and NIST, this course provides a holistic understanding of risk governance, threat modeling, risk treatment, incident detection, response, and recovery.

Participants will learn how to conduct Business Impact Assessments (BIA), create and manage risk registers, develop incident response plans, contain security breaches, and drive continual improvement post-incident. This course is ideal for professionals seeking to strengthen their cybersecurity posture and reduce business disruptions caused by IT-related risks and incidents.

What Will You Learn?

  • Understand the principles and components of IT risk and incident management
  • Differentiate between incidents, problems, and service requests
  • Conduct qualitative and quantitative risk assessments and perform BIAs
  • Formulate risk treatment strategies and build a robust risk register
  • Develop, implement, and test Incident Response Plans (IRPs)
  • Execute incident response phases: preparation, detection, containment, eradication, recovery, and post-mortem
  • Utilise industry tools like SIEM, SOAR, and EDR for real-time response
  • Align practices with leading frameworks: ISO/IEC 27005, ISO/IEC 27035, NIST
  • Course outline
    • Introduction to IT Risk and Incident Management
    • Defining Key Concepts:
      • What is IT Risk? (Likelihood and Impact of threats to IT assets)
      • What is Information Security Risk Management?
      • What is Incident Management? (Responding to unplanned service interruptions)
      • Difference between an Incident and a Problem (quick fix vs. root cause)
    • Importance and Benefits:
      • Why are these crucial for organizations? (Protecting reputation, minimizing financial losses, ensuring business continuity, regulatory compliance)
      • Impact of incidents on business operations, data, and reputation
      • Relationship between Risk and Incident Management:
        • How proactive risk management reduces incident occurrence
        • How incident data feeds back into risk assessment
      • Overview of Relevant Frameworks and Standards:
        • ISO/IEC 27000 series (especially ISO 27005 for Information Security Risk Management)
        • NIST Cybersecurity Framework
    • IT Risk Management:
      • Risk Governance and Context
        • Establishing the context for risk-related activities
        • Defining risk appetite and risk tolerance
        • Roles and responsibilities in IT risk management
      • Risk Identification
        • Identifying IT assets (hardware, software, data, people, processes)
        • Identifying threats (malware, phishing, insider threats, natural disasters, hardware failures)
        • Identifying vulnerabilities (software bugs, misconfigurations, weak passwords)
        • Threat modeling and landscape analysis
        • Risk scenario development
      • Risk Analysis and Evaluation:
        • Qualitative Risk Assessment (e.g., high, medium, low)
        • Quantitative Risk Assessment (e.g., Annualized Loss Expectancy - ALE)
        • Business Impact Analysis (BIA) - understanding the impact of IT disruptions on business functions
        • Risk register development and maintenance
        • Inherent vs. Residual Risk
      • Risk Response and Treatment:
        • Risk Avoidance
        • Risk Reduction/Mitigation (implementing controls and safeguards)
        • Risk Transfer (e.g., insurance, outsourcing)
        • Risk Acceptance
        • Developing risk treatment plans
        • Control design and implementation
      • Risk Monitoring, Reporting, and Communication:
        • Monitoring techniques (Key Risk Indicators - KRIs)
        • Risk reporting principles (heatmaps, scorecards, dashboards)
        • Communicating risks to stakeholders
        • Third-party risk management
        • Managing emerging risks
    • IT Incident Management:
      • Fundamentals of Incident Management:
        • Purpose and scope of incident management
        • Common terms and concepts
        • Incident vs. Service Request vs. Problem
        • Benefits of effective incident management
      • Incident Response Process (based on NIST or similar models):
        • Preparation:
          • Developing an Incident Response Plan (IRP)
          • Building an Incident Response Team (IRT/CSIRT)
          • Defining roles and responsibilities
          • Establishing communication guidelines
          • Implementing tools and technologies (SIEM, EDR, SOAR)
          • Training and awareness programs.
        • Identification:
          • Incident detection methods (monitoring, alerts, user reports)
          • Initial assessment and triage
          • Logging and documentation
        • Containment:
          • Strategies to limit the scope and impact of an incident
          • Short-term and long-term containment
          • Network segmentation, isolating affected systems.
        • Eradication:
          • Removing the root cause of the incident
          • Cleaning infected systems
          • Applying patches, updating configurations
        • Recovery:
          • Restoring affected systems and services to normal operation
          • Data recovery and restoration
          • Prioritizing recovery efforts based on BIA
          • Business Continuity and Disaster Recovery (BCDR) concepts
        • Post-Incident Activity/Lessons Learned:
          • Post-mortem analysis
          • Identifying what went well and what could be improved
          • Updating policies, procedures, and controls
          • Knowledge sharing and training
        • Practical Skills and Techniques:
        • Digital Forensics fundamentals (evidence collection, chain of custody)
        • Malware analysis basics
        • Vulnerability assessment and penetration testing (as they relate to identifying and responding to incidents)
        • Secure coding techniques (to prevent future vulnerabilities)
        • Secure DNS, directory services, file transfer
        • Scripting, automation, and orchestration in incident response
        • Incident Types and Specific Responses
        • Malware incidents (viruses, worms, ransomware)
        • Phishing and social engineering attacks
        • Denial of Service (DoS/DDoS) attacks
        • Insider threats
        • Web application attacks (SQL injection, XSS)
        • Data breaches
        • Cloud security incidents
    • Tools and Technologies
      • Risk Management Tools: Risk registers, GRC platforms
      • Incident Response Tools: SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), SOAR (Security Orchestration, Automation, and Response), forensic tools, ticketing systems
      • Monitoring Tools: Network monitoring, log management, security analytics.
    • ISO/IEC 27035 - information security incident management standard:
      • Providing guidelines for organizations to establish a systematic approach to detecting, reporting, responding to, and recovering from security incidents. A detailed discussion on the recommendations from this standard.
    • Case Studies and Practical Exercises:
      • Analyzing real-world incident scenarios and risk assessments
      • Developing incident response playbooks
      • Conducting tabletop exercises or simulated incident drills

Who Should Attend?

  • IT Risk and Security Professionals
  • System and Network Administrators
  • DevOps and Cloud Engineers
  • Information Security Managers
  • Security Analysts, Engineers, and Architects
  • Aspiring CISOs, CIOs
  • Auditors and Consultants in IT GRC

Learning & Career Benefits

  • Gain mastery over IT risk management frameworks and tools
  • Develop incident response capabilities in line with global standards
  • Strengthen your qualifications for senior roles like Security Manager or Incident Response Lead
  • Learn how to create a risk-aware culture within your organisation
  • Equip yourself to protect business continuity and regulatory compliance

Examination & Certification

  • Examination:
    • 50 multiple-choice questions
    • Duration: 75 minutes
    • Passing criteria: 65%
  • Certification:
    • Participants scoring 65% or above will receive the Certified IT Risk and Incident Management Professional (CRIMP) certificate
    • Others will receive a Certificate of Attendance

Get in touch with us to know more.

Business address

TÜV SÜD Bangladesh (Pvt.) Ltd.

Update Tower, Level- 12, 8 & 14, 01 Shahjalal Avenue, Sector-06, Uttara Model Town, Dhaka-1230, Bangladesh

Tel: +88 02 58954115, 58954120, Ext-119

Email: [email protected]

CONTACT US TO KNOW MORE

Fill up the form on this page and we will be in touch with more details

Register Now