Incident Response and Risk Management
Ends soon! Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.
Incident Response and Risk Management
This course is part of NIST Cybersecurity and Risk Management Frameworks Specialization
Included with
Learn more
Ask Coursera
Recommended experience
Recommended experience
What you'll learn
Design incident response plans covering preparation, detection, analysis, containment, and recovery.
Apply digital forensics best practices to analyze evidence and maintain chain-of-custody.
Implement the NIST RMF for security and risk management throughout the system life cycle.
Develop business continuity, disaster recovery, and data backup strategies for operational resilience.
Skills you'll gain
- Threat Management
- Computer Security Incident Management
- Security Management
- NIST 800-53
- Incident Management
- Cloud Computing
- Virtualization and Virtual Machines
- Cyber Security Policies
- Cloud Security
- Risk Management Framework
- Scenario Testing
- Security Controls
- Cybersecurity
- Risk Management
- Disaster Recovery
- Digital Forensics
Details to know
4 assignments
See how employees at top companies are mastering in-demand skills
Build your subject-matter expertise
- Learn new concepts from industry experts
- Gain a foundational understanding of a subject or tool
- Develop job-relevant skills with hands-on projects
- Earn a shareable career certificate
There are 4 modules in this course
Updated in May 2025.
This course now features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. In this comprehensive course, you will delve into the key components of effective incident response and risk management. The journey begins with building a strong foundation in response planning, focusing on preparation, detection, analysis, containment, and recovery strategies. Through real-world examples and scenarios, youβll learn how to develop robust incident response plans that are vital during crises such as the COVID-19 pandemic. Each episode provides practical insights and guidance, ensuring you can confidently handle incidents within any IT environment. Next, you will explore the intricacies of digital forensics, gaining skills in evidence preservation and chain-of-custody management. Youβll also understand how to effectively test and train your incident response capabilities to ensure your team is well-prepared for any eventuality. The course further covers mitigation techniques, emphasizing the importance of continuous improvement in your response strategies. Practical advice from industry experts, including insights into NIST cybersecurity frameworks, ensures a well-rounded understanding of these critical concepts. In the final sections, you will dive into the NIST Risk Management Framework (RMF), learning to integrate security and risk management into your organizationβs operations. You will gain a thorough understanding of how to categorize information systems, establish risk management scopes, and implement effective system security plans. The course concludes with business continuity strategies, backup and recovery methods, and the application of virtualization and cloud technologies to ensure seamless recovery and resilience in the face of disruption. This course is designed for IT and audit professionals, cybersecurity practitioners, and those involved in organizational risk management. A basic understanding of IT security concepts is recommended.
In this module, we will explore the foundational elements of incident response and digital forensics in cybersecurity. From developing robust response plans to understanding digital evidence handling, you'll gain essential skills for managing and mitigating cyber threats. This module is particularly relevant for IT and audit professionals looking to enhance their response capabilities.
What's included
5 videos2 readings
5 videosβ’Total 110 minutes
- Response Planningβ’26 minutes
- Incident Response Plan Examplesβ’26 minutes
- Digital Forensicsβ’19 minutes
- Response Training and Testingβ’24 minutes
- Mitigation and Improvementsβ’15 minutes
2 readingsβ’Total 20 minutes
- Introduction to the Course 'Incident Response and Risk Management'β’10 minutes
- Full Specialization Resourcesβ’10 minutes
In this module, we will explore the critical components of maintaining business continuity and ensuring recovery during cybersecurity incidents. You will learn to craft a COOP, implement backup and data recovery techniques, and leverage virtualization and cloud resources to safeguard operations.
What's included
3 videos1 assignment
3 videosβ’Total 75 minutes
- Continuity of Operations Planβ’26 minutes
- Backup and Recoveryβ’26 minutes
- Virtualization and the Cloudβ’23 minutes
1 assignmentβ’Total 15 minutes
- Assessment 1β’15 minutes
In this module, we will delve into the NIST Risk Management Framework, examining its phases and how they integrate with security planning. You will gain insights into applying risk-based approaches and developing a System Security Plan to manage and mitigate risks.
What's included
4 videos
4 videosβ’Total 85 minutes
- NIST RMF Overview & Preparationβ’20 minutes
- A Risk-Based Approach to Securityβ’24 minutes
- The RMF Preparation Stepβ’24 minutes
- System Security Plan (SSP)β’17 minutes
In this module, we will cover the Categorization Step of the NIST RMF. You will learn how to classify information systems, establish the scope of risk management, and assess the potential impacts of breaches to guide effective security planning and decision-making.
What's included
4 videos1 reading3 assignments
4 videosβ’Total 83 minutes
- Categorizing Information Systemsβ’20 minutes
- Establishing Scopeβ’25 minutes
- The RMF Categorize Stepβ’19 minutes
- Categorization Risk Analysisβ’19 minutes
1 readingβ’Total 10 minutes
- Conclusion to the Course 'Incident Response and Risk Management'β’10 minutes
3 assignmentsβ’Total 90 minutes
- Full Course Practice Assessmentβ’15 minutes
- Assessment 2β’15 minutes
- Full Course Assessmentβ’60 minutes
Earn a career certificate
Add this credential to your LinkedIn profile, resume, or CV. Share it on social media and in your performance review.
Instructor
Offered by
Explore more from Computer Security and Networks
Course
Category: Credit offeredCourse
Category: Credit offered
Why people choose Coursera for their career
Frequently asked questions
Yes, you can preview the first video and view the syllabus before you enroll. You must purchase the course to access content not included in the preview.
If you decide to enroll in the course before the session start date, you will have access to all of the lecture videos and readings for the course. Youβll be able to submit assignments once the session starts.
Once you enroll and your session begins, you will have access to all videos and other resources, including reading items and the course discussion forum. Youβll be able to view and submit practice assessments, and complete required graded assignments to earn a grade and a Course Certificate.
More questions
Financial aid available,
