PwC's Academy

Learn how to Prevent, Detect and Respond to the sustained cyber attacks

Incident Response and Investigations

Incident Response, (Computer Emergency Response Teams) CERTS, and events requiring investigative techniques are described and explained. Contrasting methodologies and approaches to Incident response and disaster recovery are compared. The course module then focuses on identifying, documenting and containing types of evidence. The programme concludes by explaining and exploring cyber investigations and evidential analysis and reporting.

Contact us         Register Now

Course Structure

Identifying and exploring the role of Incident Response and CERTS

Describe and explain the processes and tools involved in Computer Incident Responses and demonstrate an understanding of Computer Emergency Response Team roles

Examine tools and techniques for Business Continuity and Disaster Recovery and establish underpinning standards, protocols and concepts in fields of DR, BC and Cyber Resilience

Explain and describe BC, DR and Cyber Resilience and apply the concepts to case study environments

Comprehend and describe how major computer incidents are investigated and how evidence is contained and analysed and processed

Research, describe and explain the processes of planned and structured major incident investigations

Identify and explain laws and guidance in relation to the conduct of professional and structured major incident investigations

Explain and apply relevant laws and professional practice in relation to computer incident investigations


Course Outcomes
  • Cyber Threat Intelligence
  • Legal and Ethical Principles and Computer network investigations
  • Forensic Science and Digital Forensics
  • How to build the right teams to respond
  • Incident Response and Crisis Management
  • Devising your own CERT plan
  • Reporting and recording activity
  • Business Continuity Management (BCM)
  • Implementing ISO27001, ISO22301:2019, NIST 800:34 (Rev.1)
  • Devising your own BCM plan
  • Wrap-up and course summary

Target Audience

Senior and Middle Management


Please contact us for more details.

T: 0117719874


Please contact us for more information

PwC is the brand under which the member firms of PricewaterhouseCoopers International Limited operate and provide professional services. Together, these firms form the PwC network.

The PwC network and each of the individual PwC firms are strongly committed to protecting the privacy of personal data that they maintain about PwC clients, employees and other individuals. As part of this commitment to privacy, PwC regularly reviews its data protection practices to comply with applicable laws, industry standards and best practices. As a result, of the European Union’s General Data Protection Regulation (GDPR) which came into effect on 25 May 2018, and due to other territorial regulations impacting privacy, a comprehensive global programme -- the Network Data Protection Programme or NDPP -- has been established to provide a basis for, and a consistent approach to, data protection compliance across the PwC network and within each member firm.

An overarching goal of the NDPP is to promote a vision, practices and standards across the PwC network that achieve a robust level of protection and appropriate use of the personal data of PwC member firms’ people, clients, vendors and other stakeholders. All member firms are now in the process of implementing the requirements of the NDPP through their own individual firm programs, building upon existing confidentiality and security processes and standards. These new programme requirements are extensive and cover multiple functional areas and aspects of our business, all in pursuit of accountability and transparency in how PwC collects, processes, protects and disposes of personal data.

For more information regarding the PwC network, its organisation and legal structure, and the relationship between member firms, please see