Lesson 20: Improvements (RS.IM)

In this lesson students will learn about the importance of making improvements to the organizations Cyber Incident Response Plan. In this lesson we will clarify some of the technical requirements required to Continuously Improve the organization’s Cyber Incident Response Plan. These requirements include adopting a Quality Management approach and conducting lessons learned following each Cybersecurity Incident then taking these lessons and updating the Cybersecurity Response Plan. In this lesson we will review many valuable considerations for conducting lessons learned and updating the organization’s Cybersecurity Incident Response Plans. We will also provide an exercise for students to practice their newfound knowledge and develop new Cybersecurity skills.