Policies and standards Incident Handling
RCCE students will learn security policy development, implementation, and lifecycle management including information security policies, acceptable use policies, data classification policies, and incident response policies. RCCE students will learn to develop security policies aligned with organizational objectives and regulatory requirements, structure policy hierarchies (policies, standards, guidelines, procedures), obtain management approval and organizational buy-in, communicate policies effectively to employees, implement policy exceptions processes, conduct periodic policy reviews and updates, measure policy compliance, and enforce policies through technical controls and administrative processes. This incident response course prepares students to act decisively during security incidents with structured workflows and clear decision frameworks. Building on core knowledge, RCCE students will learn containment, evidence collection, eradication, and recovery procedures specific to this domain. Students practice incident scenarios that build the composure, coordination, and documentation skills essential for effective incident handling.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Policies and standards Incident Handling
- Execute hands-on tasks for incident handling
- Explain Course Overview fundamentals
- Execute hands-on tasks for policy development — covering Security policy lifecycle management.
- Execute hands-on tasks for skills acquired — covering Write production-ready security policies.
- Execute hands-on tasks for security policy hierarchy framework
- Execute hands-on tasks for security policy fundamentals
- Execute hands-on tasks for core principles
- Execute hands-on tasks for policy components — covering Align with business objectives, Purpose & scope statement.
- Execute hands-on tasks for information security policy components
- Execute hands-on tasks for access control — covering Authentication requirements.
- Execute hands-on tasks for data protection — covering Encryption standards.
- Execute hands-on tasks for network security — covering Segmentation requirements.
| Module 01 | Incident Handling |
| Module 02 | Course Overview |
| Module 03 | Policy Development |
| Module 04 | Skills Acquired |
| Module 05 | Security Policy Hierarchy Framework |
| Module 06 | Security Policy Fundamentals |
| Module 07 | Core Principles |
| Module 08 | Policy Components |
| Module 09 | Information Security Policy Components |
| Module 10 | Access Control |
| Module 11 | Data Protection |
| Module 12 | Network Security |
| Module 13 | Physical Security |
| Module 14 | Policy Development Lifecycle |
All hands-on labs run on Rocheston Rose X OS. Students practice policies and standards incident handling by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for incident handling
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for policy development
- Lab 4: Execute hands-on tasks for skills acquired
- Lab 5: Execute hands-on tasks for security policy hierarchy framework
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Policies and standards Incident Handling, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI