Incident response & exercising
Detect, manage and mitigate cyber attacks
What is incident response & exercising?
Cyber incident response is the term used to describe actions undertaken when a computer network or system is compromised, or believed to be compromised. Cyber Security Incident Response (CSIR) organisations can evaluate the situation and undertake the most appropriate actions to allow recovery from, and prevent reoccurrence of, the incident.
If your organisation is considering achieving our incident response or incident exercising accreditations and becoming a member, you can download our accreditation standard for this discipline on our Accreditation Standards page.
Get your organisation accredited
Incident Response
More information coming soon...
Incident Exercising
More information coming soon...
Getting accredited with us could help your organisation access a number of exciting partner programmes
Industry leading certifications
Take the next step in your cyber career!
Whether you’re at the start of your career, or ready to take the leap into a more experienced role, we run examinations across a number of cyber security disciplines, providing career pathways and progression options for professionals at every stage of their working lives.
Our certifications are recognised worldwide and having CREST qualified individuals demonstrates a high standard of knowledge, skills and competence. In a growing cyber market, this could help you stand out against the crowd.
Can’t find the certification you’re looking for?
Visit our dedicated page to find our full list of available certifications: CREST Certifications
CREST Practitioner Intrusion Analyst (CPIA)
The CREST Practitioner Intrusion Analyst (CPIA) is an entry level exam that tests a candidate’s knowledge in assessing fundamental aspects of Incident Response.
CREST Registered Intrusion Analyst (CRIA)
The CREST Registered Intrusion Analyst (CRIA) examination tests a candidates’ knowledge across all three subject areas of network intrusion, host intrusion and malware reverse engineering.
CREST Certified Incident Manager (CCIM)
The CREST Certified Incident Manager examination tests a candidates’ knowledge across a range of areas wider than traditional intrusion analysis and also general technology areas.
Being a CREST qualified individual could make you eligible for the following programmes
UK Cyber Security Council - more info coming soon
Resources
Research, support & news
Career pathways
Why CREST?
Whether you’re looking for globally recognised certifications or trusted suppliers of cyber services, we are committed to building cyber excellence across the globe by creating a community of individuals and organisations that are as dedicated to building a safer digital world as we are.
But it’s not just about us and collaboration is at the heart of our mission. That’s why we work with government organisations, community supporters, and discipline communities and focus groups to build a community that provides opportunities to enhance capability and raise awareness of cyber security across a whole range of industries.
