Advanced Crisis management Mastery: Fast Track
RCCE students will learn incident detection, containment procedures, evidence preservation, communication protocols, and post-incident analysis. RCCE students will learn to respond to security incidents with structured methodologies, coordinate cross-functional teams under pressure, execute containment and recovery operations, and drive continuous improvement through thorough post-incident reviews. This advanced mastery course challenges experienced practitioners with complex scenarios, expert-level techniques, and nuanced decision-making. Building on core knowledge, RCCE students will learn to handle the most demanding situations in this domain, developing the expertise expected of senior security professionals. Students tackle multi-layered problems that require synthesizing knowledge across multiple disciplines.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Advanced Crisis management Mastery: Fast Track
- Execute hands-on tasks for advanced crisis management mastery
- Execute hands-on tasks for fast track
- Explain Incident Response Foundations • Module 574 fundamentals
- Explain Course Overview & Learning Objectives fundamentals
- Build detections and response workflows for privilege escalation
- Execute hands-on tasks for containment & recovery — covering Recognize early indicators of compromise.
- Execute hands-on tasks for nist 800-61 framework deep dive
- Execute hands-on tasks for phase 1: preparation
- Build detections and response workflows for privilege escalation, including Policy development & approval.
- Execute hands-on tasks for security event — covering Observable occurrence in a system.
- Execute hands-on tasks for security incident — covering Confirmed violation of policy.
| Module 01 | Advanced Crisis Management Mastery |
| Module 02 | Fast Track |
| Module 03 | Incident Response Foundations • Module 574 |
| Module 04 | Course Overview & Learning Objectives |
| Module 05 | Incident Detection |
| Module 06 | Containment & Recovery |
| Module 07 | Incident Response Lifecycle |
| Module 08 | NIST 800-61 Framework Deep Dive |
| Module 09 | Phase 1: Preparation |
| Module 10 | Phase 2: Detection & Analysis |
| Module 11 | Security Event |
| Module 12 | Security Incident |
| Module 13 | Crisis Scenario |
| Module 14 | Catastrophic Event |
All hands-on labs run on Rocheston Rose X OS. Students practice advanced crisis management mastery: fast track by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for advanced crisis management mastery
- Lab 2: Execute hands-on tasks for fast track
- Lab 3: Explain Incident Response Foundations • Module 574 fundamentals
- Lab 4: Explain Course Overview & Learning Objectives fundamentals
- Lab 5: Build detections and response workflows for privilege escalation
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Advanced Crisis management Mastery: Fast Track, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI