ISACA, the global IT association for professionals involved with information security, is hosting a digital forensics course during the forthcoming Infosecurity Europe show in London.

The 1 May course will be led by Neil Hare-Brown, an ISACA certified information systems auditor and CEO of security firm Blackthorn. The digital forensics course will provide attendees with the concepts and principles that security professionals and auditors need to know to review, conduct or participate in a forensics investigation.

Digital forensics and investigation is the recovery and investigation of data in any device capable of storing digital data. To respond effectively to any scenario involving a data breach, organisations rely on the tools and techniques of digital forensics and e-discovery.

The course focuses on defining digital forensics and e-discovery, exploring specific digital forensics methods, and learning about regulations that impact strategies for analysis, risk mitigation and organisational preparedness.

"Pretty much any investigation can be a sensitive matter for the organisation concerned. With almost total reliance on information technology the evidence needed to support investigations is often found to be in a digital form," said Neil Hare-Brown.

"When it comes to digital investigations and the use of forensics, answering the who, what, when, how and where is often undiscovered country for the stakeholders, executives, senior management, auditors, legal, HR and corporate communications specialists. Often, even the security team lack the experience for effective response."

The short course aims to allow attendees to answer the following:

How do I add confidence to the reports I have of misuse or breaches of business information?

When will digital forensics help me?

Do our staff have the necessary technical and management skills to undertake and support digital investigations?

Am I prepared for a forensic investigation and will our systems provide the data required to give the investigators the best chance of recovering vital evidence?

Do we have the necessary agreements with third parties to enable and support a successful digital investigation?

What results might I expect from a forensic investigation and how long will it take to get those results?

How do I balance the need for investigation against the need for recovery of our critical business systems?

The course costs £549 for ISACA members and £649 for non-ISACA members.