CSIRT or SOC establishment and modernisation

About the course

This course delves deep into cybersecurity team (CSIRT/CERT/SOC) establishment practice, where the combination of theory, unique experience with lessons learned, and hands-on practice gives attendees a clear and actionable picture on how to build an effective cybersecurity team.

Continuous growth and reliance on Information Communication and Technologies (ICT) results not only in benefits to organisations, but also in cyber incidents, which threatens ICT infrastructure and the sensitive data inside it. The ability to detect efficiently, mitigate and recover from cyber incidents is a crucial capability for organisations, established and managed within Computer Security Incident Response Teams (CSIRTs/CERTs/CIRTs) and Security Operation Centres (SOCs), thereafter – the cybersecurity team.


The course is designed for non-technical professionals who are or will be responsible for cybersecurity teams, CSIRT/CERT/SOC establishment, management, and growth in governmental and private sectors. 

After this course, you will be able to:


Lead the cybersecurity team establishment activities


Clearly define the position, role, and responsibilities of the cybersecurity team within an organisation or the state


Elaborate and measure the services provided by the cybersecurity team


Understand the technologies used by the cybersecurity team


Set up the requirements and timelines for cybersecurity team establishment

Meet your trainer


Dr. Vilius Benetis | Director at NRD Cyber Security

CSIRT/SOC architect cybersecurity incident handling expert, researcher-practitioner



Paulius Daukšas
Cybersecurity consultant

For more information, please contact
Email: pd@nrdcs.lt
Tel.: +370 680 18 058

Let's get in touch