Express Tabletop: The SaaS No One Approved Express Course

Product Details

The exercise in this course places responders in an ambiguous scenario involving a third-party service that falls outside known organizational assets. With limited information and increasing pressure to act, participants must evaluate response options, determine what questions require answers first and decide how to proceed without clear visibility.

Across multiple decision points, learners practice slowing down responses, prioritizing understanding and distinguishing between governance concerns and situations that may require formal incident escalation. The exercise reinforces disciplined, evidence-aware thinking when organizational visibility is incomplete.

Learning Experience:

• Audio and text-based content
• Branching scenario
• Check your understanding questions 
• Validation of completion 
• 24/7/365 technical support 

---

Who Will Benefit

This course is designed for cybersecurity professionals seeking to move beyond reactive troubleshooting and develop investigative approaches that align with security management and incident response best practices. It is relevant for those in or considering roles of incident responder or security analyst who need to strengthen their ability to investigate anomalies or concerns.

Learners should have a foundational understanding of continuous monitoring and basic incident response practices.

---

Key Topics

• Incident response
• Security operations
• Cloud security

---

Learning Outcomes

• Evaluate response actions in an evolving scenario to determine governance focused, evidence informed steps that support accurate impact assessment, breach evaluation and effective policy and visibility controls.

---

Benefits

• Learn to make informed response decisions when visibility is limited, ownership is unclear and the right next step is uncertain, reinforcing the importance of investigation and thoughtful escalation over reactive action
• Gain expertise in emerging cybersecurity topics
• Participate in activities centered on real-world applications
• Earn CPE credits

---

Program Completion

Learners have 60 days from the date of purchase to complete the entire course. Those who successfully complete this course will receive a digital Validation of Completion and earn continuing professional education (CPE) credits. We recommend that you download and retain the Validation of Completion for your personal records.

To receive a Validation of Completion and earn CPE credits, learners must:

• Complete the learning experience
• Complete the learning experience evaluation

---

Credit Info

CPE Credits	Group A	0.5
Field of Study	Cloud Security, Security Operations
Level	Intermediate
Prerequisites	A foundational understanding of continuous monitoring and basic incident response practices.
Access	Online	This is a digital product. The content will be available up to 60 days after purchase date.

For more information, please refer to the ISC2 Certification Maintenance Handbook for additional CPE requirement details.

---

CPE Credit Reporting

CPE credits earned from this learning experience will automatically be reported for ISC2 credentials on the first day of every month. Please allow up to 10 business days for processing.

CPE credits earned for this learning experience may also be eligible for continuing professional education credits for non-ISC2 certifications. Please visit the continuing education requirements established by the credentialing organization for eligibility.

For questions related to ISC2 CPE credits or the CPE portal not covered in the handbook, please contact us via our online form.

Delivery

A stable internet connection is required. To record your completion of the online learning experience, please ensure you are connected to the internet at all times.

---

Cancellation Policy

Refunds are not provided for ISC2 learning experiences.