Skip Header
U.S. flag

An official website of the United States government

Regulations and Examinations

Continuing IT Training Program - Incident Response

Last Updated: January 29, 2024

Program Overview

This course will delve into key topics relating to identifying and managing incidents and risks of an immature or incomplete incident response process. As an advanced course, the content is technical in nature, and the course is not meant to provide 'how to' guidance for conducting an IT bank examination.

Key Objectives

Upon completion of this course, participants will be able to:

  • Define essential terminology and concepts related to forming an enterprise incident response team, incident detection, assessment, containment, recovery, forensics, information sharing and communication;
  • Identify common attack vectors in the financial industry and anatomy of an attack complete with countermeasures; and
  • Discuss management's capability to rapidly and properly respond to a security incident.

Instructional Format

Virtual classroom discussion and lectures via Microsoft Teams


Four days



Target Audience

Examiners or ITEAs who will lead or participate on level B and A examinations.

This course is open to appropriate staff of the FDIC and partner government regulatory agencies. This course is not open to the public or staff of private banks.


Participants should have completed all of the basic- level and, at least most of, the intermediate-level IT courses. 

Pre-Course Assignment


Special Requirements


Post Course Feedback



Depending on the vendor, this course may provide CPE/CEU credits. Any credits offered would be strictly handled by the vendor.

More Information

For more information concerning course content and administration, please e-mail