Cyber And Data Breach Incident Management
WSQ Level 4 (2-Day)
Today no organisation is safe from cybercrime. The threat of cybersecurity breaches is no longer a question of "if" or "when” but has already arrived!
What causes data breaches? Insecure devices, unpatched software, open software vulnerabilities, and a lack of encryption are common causes of data breaches. Often a cyber data breach incident can occur not only because of criminal activity but also because of some system or security lapses or operational failure, or some staff made an honest mistake – the intentional or unintentional threat actors. Thus the incident response and management alert trigger and actions are essential to contain both such cyber data breaches which can occur anytime not only due to crime but also due to operational lapses or system failures.
KEPNERANDFOURIE® is a world-class problem-solving tool used by major MNCs globally - we have carefully curated and integrated this effective global critical thinking and problem-solving tool into our
A Cyber incident management process is a set of procedures and actions taken to respond to and resolve critical Cyber incidents: how incidents are detected and communicated, who is responsible, what tools are
used, and what steps are taken to resolve the Cyber incidents. Investigators cannot be generic and understand that the "devil lies in the details". In this Masterclass, you'll learn how to identify the "core fault" in an incident. Our approach will enable the investigator to get all stakeholders on board to agree on the specific “core fault” of the incident. This is achieved by:
INVESTIGATING RELEVANT INCIDENT DIMENSIONS and ASKING THE RIGHT QUESTIONS - It's vital to ask the correct questions from the appropriate subject matter experts to receive proper information. A precisely developed, well-structured questionnaire accomplishes this.
The CADBIM Programme
This module describes the ability to develop cyber incident management procedures and synthesize incident related analyses to distil key insights, resolve the cyber incidents and establish mitigating and preventive solutions.
Together with our principal Thinking Dimension Global, an experienced Global Consultancy in KEPNERandFOURIE® Problem Solving methodologies in the Infocomm Technology (IT) sector, we present the following to our learners:
In summary these are the four key components of an incident response plan.
Detection & Analysis
Containment, Eradication & Recovery
Post Incident Improvement & Resiliency Building
KEPNERandFOURIE® is a world-class problem-solving tool used by major MNCs globally - we have carefully curated and integrated this effective global critical thinking and problem-solving tool into our WSQ courseware.
Investigators cannot be generic and understand that the "devil lies in the details". In this Masterclass, you'll learn how to identify the "core fault" in an incident. Our approach will enable the investigator to get all stakeholders on board to agree on the specific “core fault” of the incident. This is achieved by:
INVESTIGATING RELEVANT INCIDENT DIMENSIONS – This approach ensures that all of the unique angles connected with the specific incident are accounted for and addressed.
ASKING THE RIGHT QUESTIONS - It's vital to ask the correct questions from the appropriate subject matter experts to receive proper information. A precisely developed, well-structured questionnaire accomplishes this.
Analyse incidents quickly and efficiently apply permanent fixes
The KEPNERandFOURIE® Problem Solving Methodology is a framework for systematic analysis utilizing problem-solving and decision-making templates. Its prepared, structured questions enable teams from various disciplines to collaborate more successfully with relevant and qualified data sources.
This combination of tools allows the problem-solving team to initiate, execute, and conclude a correct evaluation of the situation. It also gives thinking investigators with the opportunity to resolve vexing issues/incidents and generate solutions for seemingly unsolvable problem situations.
Develop a benchmark that triggers incident alerts triggers to relevant stakeholder.
Develop a holistic view of incidents by integrating and analysing cyber information, key insights and impact.
Manage the containment of cyber incidents by applying incident remediation solutions and strategies.
Lead recovery of cyber incidents and minimize any possible risks.
Establish and drive mitigation and prevention processes and policies.
Meet Your Trainers
Dr. Mat-Thys Fourie
Dr. Mat-Thys Fourie is a Professional Problem Solver as accredited by the Institute of Professional Problem Solvers (IPPS). He is an author of several books on Root Cause Analysis, Project Management, Problem Solving and is the co-author of the KEPNERandFOURIE® Thinking methodologies.
He has over 35 years of Problem Solving and Decision-Making transformational experience helping organizations across the world solve some of their most vexing and seemingly unsolvable problems. He has worked across a wide spectrum of industries from Automotive, Financial, Manufacturing, Medical Devices, Pharmaceutical, Nuclear, Insurance, Airline, Technology, and Telecommunications.
He has worked in companies such as Macquarie Group, SASOL, Unisys, SITA, Barclays, RBS, NCS, Singapore Stock Exchange, BMW, VW, Cadbury Schweppes, Westpac, National Australia Bank, Department of Education NSW Australia, Kimberly-Clark, Hollister, Stihl Inc., and the U.S. Navy.
Dr. Fourie’s primary passion is developing in-house professionals and help organizations to improve their problem-solving and decision-making practices. These days he is mostly available as a consultant, facilitator, and/or contractor working alongside an in-house incumbent helping them to initiate and execute a sustained improved problem-solving company culture.
Anthony has nearly 25 years professional experience as a cybersecurity pioneering professional, advocate, consultant, instructor, auditor and business leader in the Asia Pacific region, and is competent in many various aspects of cybersecurity, his recent and current pursuits being application security, cloud security, OT security and Smart/Safe cities.
Anthony is a long-time popular public speaker and content contributor at many business, industry, academic and government conferences and media (print, broadcast, internet) in the region, and interviewed often on Singapore TV News.
Anthony has sat on several government cybersecurity committees in the region, has an MBA in International Economics and is a life alumnus of the University of Illinois, Urbana-Champaign.
Other qualifications and appointments:
Fellow, cybersecurity & governance, school of business, Singapore University of Social Science
Adjunct Instructor, Specialist Diploma in Cyber-security Management (graduate program)
ISC2 CCSP (cloud security professional technical certification) Devt Committee & first AP Instructor
ISC2 CSSLP (software security professional technical certification) first AP holder & evangelist
ISO-27001 Lead Auditor
ITIL, CCSK, CCAK
Sarbojit Madhab Bose is a seasoned IT security professional with an expertise of over 30 years of working experience. Currently, he is the Director of Training in the CSA Singapore Chapter. His expertise includes skills in IT, cyber & cloud security, data privacy, governance, risk and compliance. He holds certifications in Cloud Security Knowledge (CCSK), PMP, CISSP, CSM and is a qualified CSA CCSK instructor.
In addition to being a professional trainer and course developer for SSG-sponsored trainings, Sarbojit also provides audit and consultancy in Singapore and abroad. Previously, he was overseeing projects involving the SOE and National Stadium in Singapore as well as private and hybrid cloud projects.
Snippets of Dr. Mat-Thys Fourie's Presentation on Problem Solving
at the SPMI Symposium, Marina Bay Sands
Cyber And Data Breach Incident Management: What Does It Cover?
Workshop Cost After SSG Subsidies
With effect from 1st Jan 2022
Course Code: TGS-20220221123
Course End Date: 2 February 2024
MCES >40 years old Singaporean Citizen
SME for Singaporean/SPR
21-39 years old Singaporean/PR (and NON-SME
For details on our upcoming workshops,
please click on the link below
Frequently Asked Questions
What is KEPNERandFOURIE® ?
KEPNERandFOURIE®️ is the brand name of a World Class Problem Solving methodology co-developed by the late Professor Chuck Kepner and Dr. Mat-thys Fourie.
The KEPNERandFOURIE®️ Problem Solving Methodology is a framework for systematic analysis utilizing problem-solving and decision-making templates. Its prepared, structured questions enable teams from various disciplines to collaborate more successfully with relevant and qualified data sources.
It helps organizations to find the root cause ‘first time every time’ through the use of proprietary and unique investigation processes. The model can be transferred to an organization’s in-house coaches, facilitators, and staff to use these processes independently.
KEPNERandFOURIE®️ tools have helped many MNCs save multi-million dollars on projects leakages, delays, and lapses. It is also used to solve many downtime issues in the areas such as Production Systems, IT Helpdesks in major financial institutions, Software Development Projects, Virtual Networks, and many others.
Today KEPNERandFOURIE®️ tools are used in advanced levels of professional Problem-Solving in ITIL and DevOps.
Which organisations has it helped?
Trusted by organizations around the world, KEPNERandFOURIE®️ is used by both private companies and governments all over the world including: SKF, BMW, London Stock Exchange Group, Merck, ANZ, Barclays, US Navy, Singapore Exchange (SGX), and many other leading organizations.
How will our CADBIM Masterclass help a major IT Organization?
Leverage your resident intelligence to combat cybersecurity threats because nobody knows your critical systems better than your own staff.
Your staff will always have their ears on the ground and will be a major contributing factor in fighting security risks.
In-house training could be customized to address company specific challenges more effectively during the actual workshop time.
An in-house option provides for more effective & meaningful personal learning experience.
Workshop could be delivered in a permutation that would ensure the least disruption to existing work practices and workload.
This will change a poor supported "push" approach to a well-supported "pull" approach with exponentially improved data.
Can I claim PDUs on KEPNERandFOURIE® workshops?
Yes you can. KEPNERandFOURIE® is an accredited Training Vendor with PMI. Each Workshop hour is equivalent to 1 PDU. Post the workshop, Stevenson Hureca will issue KEPNERandFOURIE® certificates to individuals who have completed our Workshop(s). This will enable PMP-certified professionals to enjoy this PDUs accreditation once they apply to the PMI US portal website. For example, if you attended a 16-hour workshop, you will enjoy 16 PDUs.
I am 40 years old and above. Do I qualify for training subsidies?
Yes, for Singapore Citizens 40 years & above, 30% of WSQ course fee applies under the SkillsFuture Mid-Career Enhanced Subsidy, and you will only pay $264. SkillsFuture credits are applicable as well.
I am 39 years old and below. Do I qualify for training subsidies?
Note that the SSG Subsidy for the age group of 39 and below is much less. The fees will be $440 after subsidies for Singapore Citizens 39 years & below and Singapore PRs. SkillsFuture credits are applicable as well.
I am a Foreigner with EP and can I attend?
There is no SSG subsidy for this category and you are welcome to join at the full fee price of $880. You will receive a KEPNERandFOURIE® certificate of completion and be able to apply the PMI US Website and enjoy 16 PDUs.
Can my company sponsor my training?
Yes, they can. If your company is an approved SME, they only need to pay 30% of the WSQ course fee and can claim absenteeism payroll at $4.50 an hour. If your company is non-SME (MNC), they need to pay 50% of the Nett Fee which is $440 (for Singaporeans and PRs only) and canclaim absenteeism payroll at $4.50 an hour.
I am not from the IT industry, will the Masterclass be relevant to me?
In this public workshop, the case studies used are mostly IT-centric and hence not suited for non-IT professionals.
This methodology can be used in any industry. For in-house workshops for Corporate Clients, our consultant can contextualize the case studies to your industry or company-related cases. Contact our Course Advisor/Consultant for more information.
I would like to maintain my PMP certification. Can I earn PDUs by completing the CADBIM Masterclass?
Yes! PMP members will earn 16 PDUs.
Why is this course so affordable?
A typical 2-day internationally accredited Technical course will easily cost $1500 for a 2-Day workshop.
We have intentionally made this affordable so that many IT professionals including PMPs and working PMETs can learn such useful tools to help them in their companies to improve productivity and boost their professional careers.
Will I receive a certification at the end of the Masterclass?
Yes! You will receive 2 Certificates in pdf format.
The first certificate is from Skillsfuture Singapore (SSG). SSG will issue a Statement of Attainment (SOA) 3-4 weeks after you have successfully attained Competency in the Assessment.
For the 2nd certificate, Stevenson Huréca will issue KEPNERandFOURIE® certificate of completion with the number of hours completed. This will enable your PDU claims from the PMI US portal.
Who Should Attend?
This is a 2-Day workshop designed to equip participants with the essential tools and techniques to pinpoint, investigate and diagnose the technical causes to your organisation's problems.
Cyber Security Professionals, Data Protection Professionals, , IT Network & Operation Engineers/Managers who need to hone their Incident Management capability.
IT professionals who need to be equipped with the essential tools and techniques to pinpoint, investigate and diagnose the technical causes of Cybersecurity and data lapses in your organisation.
Cyber Security and Data Protections Professionals who would like to enhance their employability, capabilities, and market value.