Incident notifications Incident Response: Workshop
RCCE students will learn incident notification procedures including regulatory breach notification requirements, customer notification obligations, law enforcement coordination, and internal escalation communications. RCCE students will learn to determine notification obligations under various regulatory frameworks including GDPR, HIPAA, state breach notification laws, and sector-specific regulations, develop notification templates and timelines, coordinate notifications with legal counsel, manage customer and public communications during breach scenarios, report incidents to law enforcement and regulatory authorities, and maintain documentation of notification decisions and actions for compliance records. This incident response course prepares students to act decisively during security incidents with structured workflows and clear decision frameworks. Starting from foundational concepts, RCCE students will learn containment, evidence collection, eradication, and recovery procedures specific to this domain. Students practice incident scenarios that build the composure, coordination, and documentation skills essential for effective incident handling.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Incident notifications Incident Response: Workshop
- Execute hands-on tasks for incident notifications
- Execute hands-on tasks for hardening workshop
- Execute hands-on tasks for learning objectives
- Explain Incident Notification Foundations fundamentals
- Execute hands-on tasks for core principles
- Execute hands-on tasks for stakeholder expectations — covering Breach notification is a legal obligation, Data subjects have a right to know.
- Explain Notification Lifecycle Overview fundamentals
- Execute hands-on tasks for notifications → execute
- Execute hands-on tasks for regulatory framework landscape — covering 72-hour supervisory authority notice, 60-day individual + HHS notification, 50+ varying notification requirements.
- Execute hands-on tasks for gdpr (eu) — covering 72-hour supervisory authority notice.
- Execute hands-on tasks for hipaa (us health) — covering 60-day individual + HHS notification.
- Execute hands-on tasks for us state laws — covering 50+ varying notification requirements.
| Module 01 | Incident Notifications |
| Module 02 | Hardening Workshop |
| Module 03 | Learning Objectives |
| Module 04 | Incident Notification Foundations |
| Module 05 | Core Principles |
| Module 06 | Stakeholder Expectations |
| Module 07 | Notification Lifecycle Overview |
| Module 08 | Notifications → Execute |
| Module 09 | Regulatory Framework Landscape |
| Module 10 | GDPR (EU) |
| Module 11 | HIPAA (US Health) |
| Module 12 | US State Laws |
| Module 13 | GLBA / SOX |
| Module 14 | CCPA / CPRA |
All hands-on labs run on Rocheston Rose X OS. Students practice incident notifications incident response: workshop by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for incident notifications
- Lab 2: Execute hands-on tasks for hardening workshop
- Lab 3: Execute hands-on tasks for learning objectives
- Lab 4: Explain Incident Notification Foundations fundamentals
- Lab 5: Execute hands-on tasks for core principles
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Incident notifications Incident Response: Workshop, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI