Risk Assessment & Incident Response for MSMEs
24-Hour Professional Course
This intensive 24-hour course is designed to strengthen the cybersecurity resilience of Micro, Small, and Medium Enterprises (MSMEs). It focuses on identifying, assessing, and mitigating cyber risks specific to small business environments through practical, hands-on training and real-world simulations.
Participants gain practical exposure to vulnerability scanning, ethical hacking fundamentals, and structured incident response planning aligned with the NIST framework. The course incorporates real-world labs using tools such as OpenVAS, Nessus, Lynis, and Sysinternals.
The top performing students will conduct on-site audits at MSMEs and NGOs to identify and remediate vulnerabilities, delivering detailed reports to strengthen organizational security.
Key Topics Covered
- Vulnerability scanning with OpenVAS and Nessus
- Exposure discovery with Lynis and Sysinternals
- Log analysis and ransomware simulations
- NIST-aligned incident response planning
- Reporting incidents to BGD e-GOV CERT
Key Modules Covered
- Risk Foundation & Threat Modeling
- Auditing & Exposure Discovery
- Incident Response Basics
- Detection, Communication & Legal Considerations
- Building an Incident Response Plan
- Final Project & Practical Evaluation