From Detection to Action: Navigating the first 48 hours of an Incident

The first 24–48 hours of an incident are crucial. This webinar, delivered by James John, Incident Response Manager at CIISec corporate member Bridewell, will guide organisations through the key steps to identify, assess, assign, mitigate, and respond effectively.  Join us to understand the core actions that shape a strong and coordinated incident response.

By the end of this webinar, participants will be able to:

• Understand the critical milestones in the first 24–48 hours of an incident, and why rapid, structured decision‑making is essential.
• Identify and prioritise key indicators of compromise to assess the scale, severity, and potential impact of an incident.
• Define clear roles and responsibilities across technical, operational, and leadership teams to ensure coordinated response.
• Apply effective containment and mitigation steps
• Navigate communication pathways – internal, external, executive and regulatory – to maintain control and clarity
• Strengthen organisational readiness by understanding what good incident response practice looks like and how to embed it.

Who Should Attend?

• Cyber security leaders and managers responsible for incident preparedness.
• Incident response and security operations teams (SOC/IR).
• Risk, compliance and governance professionals who support incident management.
• Business continuity and resilience teams.
• Senior leaders or decision-makers seeking clarity on response expectations during a cyber incident.