GCIH Toolkit

Downloadable Resources, Instant Access

Analyze threat information gathered from logs, Intrusion Detection Systems (IDS), intelligence reports, vendor sites, and a variety of other sources and recommends rules and other process changes to protect against the same.

More Uses of the GCIH Toolkit:

  • Ensure that you are implementing best practice Security Policies that address the clients Business Needs while protecting vital corporate assets.

  • Support customer IT administrators and cybersecurity personnel to ensure successful Incident Response practices and business system recovery.

  • Manage work with Incident Response/detect to identify and recommend new internal and external data sources to develop additional threat detection logic.

  • Formulate: Information security analysts perform investigations on security alerts and monitor all Security Tools utilized to secure the environment.

  • Standardize: reactive Incident Management act with a sense of urgency to minimise business impact with clear stakeholder communication throughout.

  • Configure and operationalize cybersecurity tool data feeds, creating reports to show vulnerability and configuration compliance scan and remediation results.

  • Steer: conduct detailed review of cyber investigations reports and case management system to assess data/content quality, supporting evidence and the appropriateness of case outcomes.

  • Collect functional and technical requirements from stakeholders to perform Business Analysis for current and future use cases.

  • Oversee: review and take a proactive approach to false positive and work with the various security teams to tune and provide feedback to improve accuracy of the alerts.

  • Advise and consult on options, improvements, Cost Savings opportunities and cross project impact to other Business Processes and systems priorities.

  • Guide: IT infrastructure, IT applications, It Security, and other functional areas to provide a risk based and solution focused perspective on security matters.

  • Provide regular feedback, guidance and consultation to cyber investigative staff, offering direction and expertise to further an investigation.

  • Guide: architecture efficient and effective workflow and reporting solutions for capturing, validating, and approving risk activities.

  • Supervise, motivate and develop a team of high performing cyber investigators through mentorship, expectations and training secondary.

  • Troubleshoot complex issues and provides incident resolution for all related incidents requiring escalated support or subject matter enterprise.

  • Manage the balancing of service, people, change and cost in the delivery of your strategic plan and day to day operations for area of responsibility (where appropriate).

  • Orchestrate: group of individuals whose collective mission is to investigate Information security risks to or wrongdoing against your firm.

  • Perform threat hunting activities in client network through proactive analysis of log, network and system data to identify undetected threats.

  • Contribute to the development of effective, efficient and repeatable processes to improve the operations of the SOC and value to clients.

  • Ensure you consider; lead or lead the creation and or maintenance of policies, Security Metrics, standards, baselines, and guidelines.

  • Confirm your organization directs and controls activities for a client, having overall responsibility for Financial Management, methods, and staffing to ensure that technical requirements are met.

  • Be accountable for working knowledge in network Access Control, Intrusion Prevention and detection systems, firewalls, routers, Incident Response, Information security methods, and Risk Management.

  • Ensure you create; lead collaboration efforts with internal and external IT Service Providers and business units in evaluating and gathering technical requirements for business clients Information security initiatives.

  • Operationalize indicator of compromise from intelligence feeds by developing, testing, and deploying monitoring and alerting rules into siem.

  • Be knowledgeable of network and Security Architecture principles, firewall and IDS/IPS fundamentals, Endpoint Security systems and other security protective/detective systems.


Save time, empower your teams and effectively upgrade your processes with access to this practical GCIH Toolkit and guide. Address common challenges with best-practice templates, step-by-step Work Plans and maturity diagnostics for any GCIH related project.

Download the Toolkit and in Three Steps you will be guided from idea to implementation results.

The Toolkit contains the following practical and powerful enablers with new and updated GCIH specific requirements:

STEP 1: Get your bearings

Start with...

  • The latest quick edition of the GCIH Self Assessment book in PDF containing 49 requirements to perform a quickscan, get an overview and share with stakeholders.

Organized in a Data Driven improvement cycle RDMAICS (Recognize, Define, Measure, Analyze, Improve, Control and Sustain), check the…

  • Example pre-filled Self-Assessment Excel Dashboard to get familiar with results generation

Then find your goals...

STEP 2: Set concrete goals, tasks, dates and numbers you can track

Featuring 997 new and updated case-based questions, organized into seven core areas of Process Design, this Self-Assessment will help you identify areas in which GCIH improvements can be made.

Examples; 10 of the 997 standard requirements:

  1. Which Incident Handling process phases is responsible for defining rules, collaborating human workforce, creating a back-up plan, and testing the plans for an enterprise?

  2. When you consider the different types of end users, which group poses the greatest challenge in maintaining the security if your organizations information and systems?

  3. How can Security Incidents be escalated to the correct subject matter experts in a timely manner to provide the critical information necessary to contain a threat?

  4. Does your organization have any method for understanding and describing the quality or sensitivity of different types of information shared by a third party?

  5. What type of optional or mandatory training - if any - does your organization provide to its end users in maintaining Information security?

  6. Which malicious code can have more than one type of trigger, multiple task capabilities, and can replicate itself in more than one manner?

  7. How do Regulatory Requirements affect your organizations ability or willingness to share information or collaborate during an incident?

  8. What methods and information technology are in place to enable your organization to detect Security Incidents as soon as possible?

  9. What do you believe is the current level of potential threat that your organization may pose in compromising other organizations?

  10. Which Incident Response team members ensures that the policies of your organization are enforced during the Incident Response?

Complete the self assessment, on your own or with a team in a workshop setting. Use the workbook together with the self assessment requirements spreadsheet:

  • The workbook is the latest in-depth complete edition of the GCIH book in PDF containing 997 requirements, which criteria correspond to the criteria in...

Your GCIH self-assessment dashboard which gives you your dynamically prioritized projects-ready tool and shows your organization exactly what to do next:

  • The Self-Assessment Excel Dashboard; with the GCIH Self-Assessment and Scorecard you will develop a clear picture of which GCIH areas need attention, which requirements you should focus on and who will be responsible for them:

    • Shows your organization instant insight in areas for improvement: Auto generates reports, radar chart for maturity assessment, insights per process and participant and bespoke, ready to use, RACI Matrix
    • Gives you a professional Dashboard to guide and perform a thorough GCIH Self-Assessment
    • Is secure: Ensures offline Data Protection of your Self-Assessment results
    • Dynamically prioritized projects-ready RACI Matrix shows your organization exactly what to do next:


STEP 3: Implement, Track, follow up and revise strategy

The outcomes of STEP 2, the self assessment, are the inputs for STEP 3; Start and manage GCIH projects with the 62 implementation resources:

  • 62 step-by-step GCIH Project Management Form Templates covering over 1500 GCIH project requirements and success criteria:

Examples; 10 of the check box criteria:

  1. Quality Management Plan: What are your organizations key processes (product, service, business, and support)?

  2. Team Operating Agreement: Must your members collaborate successfully to complete GCIH projects?

  3. Scope Management Plan: Are you meeting with stake holders and team members?

  4. Communications Management Plan: Will messages be directly related to the release strategy or phases of the GCIH project?

  5. Cost Management Plan: Are procurement deliverables arriving on time and to specification?

  6. Procurement Audit: Does the strategy ensure that appropriate controls are in place to ensure propriety and regularity in delivery?

  7. Scope Management Plan: Have the key elements of a coherent GCIH Project Management strategy been established?

  8. Cost Estimating Worksheet: Identify the timeframe necessary to monitor progress and collect data to determine how the selected measure has changed?

  9. Human Resource Management Plan: Is documentation created for communication with the suppliers and Vendors?

  10. Requirements Traceability Matrix: What percentage of GCIH projects are producing traceability matrices between requirements and other work products?

Step-by-step and complete GCIH Project Management Forms and Templates including check box criteria and templates.

1.0 Initiating Process Group:

2.0 Planning Process Group:

3.0 Executing Process Group:

  • 3.1 Team Member Status Report
  • 3.2 Change Request
  • 3.3 Change Log
  • 3.4 Decision Log
  • 3.5 Quality Audit
  • 3.6 Team Directory
  • 3.7 Team Operating Agreement
  • 3.8 Team Performance Assessment
  • 3.9 Team Member Performance Assessment
  • 3.10 Issue Log

4.0 Monitoring and Controlling Process Group:

  • 4.1 GCIH project Performance Report
  • 4.2 Variance Analysis
  • 4.3 Earned Value Status
  • 4.4 Risk Audit
  • 4.5 Contractor Status Report
  • 4.6 Formal Acceptance

5.0 Closing Process Group:

  • 5.1 Procurement Audit
  • 5.2 Contract Close-Out
  • 5.3 GCIH project or Phase Close-Out
  • 5.4 Lessons Learned



With this Three Step process you will have all the tools you need for any GCIH project with this in-depth GCIH Toolkit.

In using the Toolkit you will be better able to:

  • Diagnose GCIH projects, initiatives, organizations, businesses and processes using accepted diagnostic standards and practices
  • Implement evidence-based best practice strategies aligned with overall goals
  • Integrate recent advances in GCIH and put Process Design strategies into practice according to best practice guidelines

Defining, designing, creating, and implementing a process to solve a business challenge or meet a business objective is the most valuable role; In EVERY company, organization and department.

Unless you are talking a one-time, single-use project within a business, there should be a process. Whether that process is managed and implemented by humans, AI, or a combination of the two, it needs to be designed by someone with a complex enough perspective to ask the right questions. Someone capable of asking the right questions and step back and say, 'What are we really trying to accomplish here? And is there a different way to look at it?'

This Toolkit empowers people to do just that - whether their title is entrepreneur, manager, consultant, (Vice-)President, CxO etc... - they are the people who rule the future. They are the person who asks the right questions to make GCIH investments work better.

This GCIH All-Inclusive Toolkit enables You to be that person.


Includes lifetime updates

Every self assessment comes with Lifetime Updates and Lifetime Free Updated Books. Lifetime Updates is an industry-first feature which allows you to receive verified self assessment updates, ensuring you always have the most accurate information at your fingertips.