Developing Courses On Crisis Management: 9 Practical Steps

By StefanMay 30, 2025
Back to all posts

Trying to build a crisis management course can feel intimidating for one simple reason: you’re training people for something that doesn’t politely wait its turn. And you can’t just “teach” your way out of that.

In my experience, the courses that actually land are the ones that turn panic into practice. You give learners a clear structure, a few reusable tools, and then you make them run the play—tabletops, role-plays, and short scenario drills—until they can do it without freezing.

Below is the exact way I’d design a crisis management course from scratch: practical, role-based, and built around artifacts your learners can take into the real world.

Key Takeaways

  • Start with learner needs and build around realistic practice. Deliverable: a 1-page “Learner Risk & Skill Map” that lists top 5 crisis risks, who gets impacted, and what learners must be able to do in the first 30 minutes.
  • Define leadership roles so nobody has to guess under pressure. Deliverable: a simple RACI chart for crisis roles (Incident Lead, Comms Lead, Legal/HR, Ops Owner, Liaison) plus an escalation rule.
  • Teach crisis types with early indicators, not just definitions. Deliverable: a “Crisis Classification Card Set” (one card per crisis type) with 3–5 symptoms, severity triggers, and the first decision to make.
  • Make crisis communication teachable and repeatable. Deliverable: a crisis comms message map template (What we know / What we don’t / What we’re doing / What to do next) with example scripts.
  • Use models as checklists, not academic frameworks. Deliverable: a “Model-to-Module Mapping Sheet” that turns FEMA/SCCT/other frameworks into a step-by-step lesson sequence.
  • Run scenario-based drills that feel real and measure performance. Deliverable: a 60-minute tabletop format (injects every 10 minutes) with a facilitator guide and scoring rubric.
  • Build continuity planning into the course, not as an afterthought. Deliverable: a continuity plan outline (critical functions, RTO/RPO, alternate suppliers, workaround playbooks, recovery owners).
  • Deliver in a way that keeps people moving. Deliverable: a sample session plan: 10 min briefing + 20 min role-play + 10 min comms writing + 15 min debrief + 5 min quiz.
  • Assess with scenarios and feedback that tells learners what to do differently next time. Deliverable: a scoring rubric (Clarity, Speed, Accuracy, Empathy, Actionability) plus a short “next iteration” action plan.

1. Key Elements in Crisis Management Course Development

Before you write a single slide, decide who you’re training and what “good” looks like in the first hour. That’s the part most crisis management courses skip.

When I built a crisis course for a mid-sized organization, I started with a workshop: we listed the top risks the team actually feared (not the ones that sounded dramatic). Then I asked a blunt question: “What would you want your leaders to do in the first 30 minutes if everything went wrong?”

That exercise shaped the whole curriculum. It also exposed gaps fast—people were confident about “what crisis is,” but they couldn’t agree on who does what.

Here’s how to structure your opening module (and keep it grounded):

  • Module 1 (60–90 minutes): Learner Risk & Skill Map + crisis roles intro + a mini classification quiz.
  • Activity: Give learners 6 short incident blurbs (e.g., “ransomware note + unusual outbound traffic,” “storm warning with power loss expected,” “employee missing during event”). They categorize and decide the first action.
  • Deliverable: each learner leaves with a filled “first-hour action checklist” (5 bullets max) for their role.

If you want an authority reference to borrow from, FEMA’s Community-Specific Integrated Emergency Management Course (IEMC) is a good example of tailoring training to community needs—use that idea, then adapt it to your learners’ reality.

Also, don’t make your course a museum. Crisis management isn’t static. Update examples quarterly if you can. At minimum, refresh your scenario injects and comms templates every 6–12 months so learners aren’t practicing outdated assumptions.

2. Understanding Leadership Roles During a Crisis

Leadership during a crisis isn’t about having all the answers. It’s about reducing uncertainty fast and making decisions that people can execute.

I’ve seen teams get stuck because they treat leadership like a personality trait instead of a set of responsibilities. So in my courses, I make roles painfully explicit.

What I teach (and what learners practice):

  • Incident Lead: runs the response rhythm (time-boxed decisions, priorities, escalation).
  • Comms Lead / Spokesperson: produces updates on a schedule and keeps messaging consistent.
  • Ops/Continuity Owner: confirms what’s operational, what’s not, and what workaround is being used.
  • Legal/HR/Compliance (as applicable): handles sensitive disclosures and internal policy constraints.
  • Liaisons: coordinate with external partners (local authorities, vendors, media, unions, etc.).

And yes—openness matters. Not as a motivational slogan, but as an operational habit. If leaders avoid hard truths (“we’ll know later”), rumors fill the gap. In training, I tell learners to use a simple line that works: “We don’t have all the information yet. Here’s what we know, here’s what we’re doing next, and here’s when we’ll update again.”

If you want a leadership-focused course model to reference, MIT’s Crisis Management & Business Resiliency course is a helpful benchmark for preparing against real threats like cyber incidents, pandemics, and regulatory crises. What I borrowed from that style is the emphasis on action over theory—so learners leave with specific playbooks, not just concepts.

Practical leadership drill (I use this a lot):

  • Scenario: “Suspicious activity detected; systems intermittently unreachable; rumor circulating that customer data was stolen.”
  • Task: In groups, learners run a 15-minute “first brief” using a template: Situation (facts), Intent (what you’re trying to achieve), Priorities (top 3), Risks (top 2), Next Update Time.
  • Scoring: clarity, speed, accuracy, and whether they state what they don’t know.

3. Identifying Different Types of Crises

People don’t fail because they “don’t know.” They fail because they mislabel the situation and run the wrong playbook.

So I teach crisis identification like a decision process. Not just categories (natural disaster, security, cyber, financial, public health, reputational), but early indicators and severity triggers.

For example, “cyber threat” isn’t one thing. Is it phishing with minor impact, or is it ransomware with data exfiltration risk? Your course should help learners narrow that quickly.

Use a structure like this:

  • Step 1: What’s the incident type? (security / safety / service outage / health / reputation)
  • Step 2: What’s the likely impact? (people, systems, finances, trust)
  • Step 3: What’s the first decision? (isolate, evacuate, notify, pause release, activate comms)
  • Step 4: What’s the escalation threshold? (e.g., “any evidence of data theft” or “confirmed injuries”)

GCSP’s Critical Incident Management course (May 13-15, 2025) is a useful reference point because it targets officials and executives dealing with sector-specific crises like geopolitical issues and cybersecurity breaches. The useful takeaway for course design is that the scenarios need to match the audience’s real constraints and decision environment.

In your course, don’t just show examples—make learners sort them. I recommend a 20-minute “classification sprint”:

  • Give learners 8 incident blurbs.
  • They categorize each one and choose the first action.
  • Debrief with a “why” discussion, not just the right answer.

One artifact that helps: the “Crisis Classification Card Set.” Each card should include: 3–5 symptoms, severity triggers, first decision, and which leadership role owns the next step.

Ready to Create Your Course?

Try our AI-powered course creator and design engaging courses effortlessly!

Start Your Course Today

4. Effective Crisis Communication Strategies

Crisis communication isn’t “send an update.” It’s managing uncertainty while protecting people and maintaining trust.

Here’s the communication standard I use in training: clear, honest, and action-oriented. No jargon. No “we’re looking into it” without a timeline. And definitely no overpromising.

Before the crisis: build a comms plan that answers three questions:

  • Who speaks? (single spokesperson or tightly coordinated spokespeople)
  • What gets said? (your message map and holding statements)
  • When do updates happen? (a schedule people can rely on)

In my experience, the best comms plans include a “3-tier alerting schedule.” For example:

  • Tier 1 (0–30 minutes): acknowledge + what you know + immediate safety instructions
  • Tier 2 (30–120 minutes): what’s changed + what you’re doing + next update time
  • Tier 3 (after stabilization): confirmed facts + impact details + support resources

For wording, I recommend teaching learners a message map they can reuse under pressure:

  • What we know: 1–2 factual sentences.
  • What we don’t know yet: one sentence (no speculation).
  • What we’re doing: 2–3 action bullets.
  • What you should do now: clear next steps.
  • When we’ll update again: specific time window.

If you want a training reference that emphasizes handling tough discussions openly, GCSP’s Critical Incident Management course (May 13-15, 2025) is aligned with that practical approach.

And please—don’t delay information just to feel “certain.” If you don’t know, say it. The line I like is: “We don’t have all the information right now, but we’ll update soon.” What matters is that “soon” becomes a defined update time, not a vague promise.

Finally, teach multi-channel distribution. Learners should know how the same message changes slightly across social media, SMS, email, press briefings, and internal channels. The goal isn’t to rewrite everything—it’s to keep the meaning consistent.

5. Analyzing Crisis Management Models

I do like crisis management models. But I don’t teach them as “read this and hope it works.” I teach them like a checklist you can run quickly.

Here’s my model-to-course approach:

  • Pick 2–3 models that cover planning + response + comms.
  • Translate each model into 5–7 steps your learners can execute.
  • Map those steps to lessons (so learners practice them, not just memorize them).

For FEMA’s approach, you can use the integrated emergency management lens supported through Community-Specific Integrated Emergency Management Course (IEMC). Your course doesn’t need to mirror FEMA exactly. But you should translate the idea of integration (planning, coordination, and community-specific readiness) into your own module sequence.

For comms-focused frameworks, Situational Crisis Communication Theory (SCCT) is a solid option. And Harvard’s crisis management approaches can help with structure and decision cadence.

Worked example (how I’d map SCCT into a module):

  • Lesson: “Choose the right response strategy based on crisis type and responsibility perception.”
  • Student task: classify a scenario (accident vs. negligence vs. intentional act) and produce a message map aligned to that classification.
  • Deliverable: a 1-page comms strategy recommendation with 3 message options (short, medium, detailed).
  • Assessment: rubric scoring on clarity, empathy, and actionability—plus whether they avoided blame traps.

The key is letting learners compare models with real decisions. Ask them: “If you use Model A, what do you do in the first 15 minutes? If you use Model B, what changes?” That’s where understanding clicks.

6. Implementing Practical Training and Case Studies

The truth is simple: crisis management isn’t a “read and remember” topic. It’s a “do it until it’s muscle memory” topic.

My favorite training format is the tabletop with injects. You run it like a clock. People hate it at first (because it forces decisions), and then they love it because it exposes what they’d actually do.

Here’s a 60-minute tabletop exercise template you can copy:

  • 0–10 min: Inject #1 (incident begins). Teams identify crisis type, assign roles, and draft the first update.
  • 10–20 min: Inject #2 (new info changes severity). Teams revise priorities + comms schedule.
  • 20–40 min: Inject #3 (complication: rumor, system outage, injured person, vendor delay). Teams decide next actions and update stakeholders.
  • 40–55 min: Inject #4 (media request / regulator inquiry / internal escalation). Teams produce a short Q&A response.
  • 55–60 min: Debrief + scoring + “what we’ll change next time.”

What I noticed after running a few of these: learners often write “perfect” messages that ignore operational constraints. So I require them to attach their update to a decision log: what decision did this message support? It keeps comms from becoming theater.

When choosing scenarios, match the crisis to the audience. If your learners are business leaders, focus on cyber, service disruption, financial shock, and reputational risk. If you’re training public safety or local government, include safety and evacuation-type scenarios.

MIT’s Crisis Management & Business Resiliency course (July 14-18, 2025) is a good reference for mixing cyber incidents, pandemics, and regulatory challenges. The practical lesson for you: simulations should mirror the kinds of decisions your learners will actually face.

After each exercise, run a “What worked / What didn’t / What we changed” debrief. Keep it structured. Otherwise, debriefs turn into generic reflections.

7. Preparing for Emergencies and Continuity Planning

Emergencies rarely announce themselves. That’s why continuity planning can’t be a PDF nobody opens.

In the course, I start with vulnerability mapping. Not just “what could go wrong,” but where you’ll actually break:

  • Single suppliers (what happens if they’re unavailable for 72 hours?)
  • Critical systems (what’s the recovery time and backup process?)
  • Physical locations (what if a site is inaccessible?)
  • People dependencies (who is irreplaceable, and what’s the backup?)

Then we build a continuity plan outline that learners can fill in during training. Use updated references like the March 2025 Emergency Management Statistics report to ground the course in current trends—especially around technology, response effectiveness, and operational expectations.

Continuity plan deliverable (what learners should produce):

  • Critical functions list (top 5–10)
  • RTO/RPO targets (realistic timeframes)
  • Recovery owners (named roles, not vague teams)
  • Workarounds (how you operate when systems are down)
  • Alternate suppliers / fallback vendors
  • Communication plan (internal first, then external)
  • Test schedule (tabletop + functional test + after-action reviews)

And here’s the limitation I always mention: continuity plans fail when they’re not tested. So I build a “test-and-improve” loop into the course. Learners should leave knowing how to run a mini test and how to update the plan based on what actually happened.

8. Delivering the Course Effectively

Delivery matters. People can sit through slides about crisis management and still panic when the scenario hits.

So I design sessions around active learning. If your format is mostly watching, you’re going to lose them. And if you’re teaching online, you need to be extra deliberate.

A simple session structure that works (especially for mixed audiences):

  • 0–10 min: facilitator briefing + what success looks like
  • 10–30 min: role-play or breakout inject task
  • 30–45 min: comms writing (message map + short statement)
  • 45–55 min: group share + facilitator feedback
  • 55–60 min: quick quiz or scenario check

Mix media, but keep the purpose clear. Videos should introduce a scenario, not replace practice. Breakout rooms should force decisions. Downloadables should be templates learners can use later.

If you’re creating educational videos, you can reference this guide on how to create educational videos effectively—but don’t stop there. The “real work” should happen in interactive parts.

Guest speakers can be great, but only if you choose them carefully. Here’s my selection checklist:

  • They’ve led or supported a real incident (or a simulation that was evaluated).
  • They can talk about tradeoffs (what they did, what they regretted, what they’d change).
  • They can provide concrete artifacts (message examples, checklists, after-action lessons).
  • They’re comfortable with Q&A that includes “hard” questions.

And integrate their input into assessments. For example, after a guest speaker shares a comms mistake, learners should rewrite the comms response in the next exercise using the correct approach.

9. Assessing Understanding and Providing Feedback

If you only assess with quizzes about definitions, you’re not really measuring crisis readiness. People can ace a multiple-choice test and still freeze when they’re the spokesperson.

So I recommend scenario-based assessments that mirror what they’ll do in real life. Keep them short. Keep them timed. And grade them with a rubric.

Assessment types that actually work:

  • Timed comms draft: 10 minutes to produce a message map + 30-second update.
  • Role-play decision sprint: 15 minutes to make the first three decisions and log the reasoning.
  • Tabletop scoring: use injects and evaluate performance across the response rhythm.
  • Continuity plan review: learners submit a filled continuity template and defend tradeoffs.

If you need help building quizzes or interactive checks, this article on how to make a quiz for students can help you structure questions and feedback.

Rubric example (simple but effective):

  • Clarity: message is understandable in plain language.
  • Speed: delivers the first update within the expected time window.
  • Accuracy: avoids speculation and states what’s unknown.
  • Actionability: includes next steps stakeholders can follow.
  • Empathy & responsibility: acknowledges impact appropriately without blame spirals.

Feedback should be immediate when possible. And it should show learners how to improve in the next attempt. I like giving feedback in two parts:

  • 1 “keep doing this” (strength they can repeat).
  • 1 “change this” (one specific improvement with an example rewrite).

Then, run a quick re-write. It’s amazing how much learning sticks when people can revise their own response right after feedback.

FAQs


A crisis management training course should cover crisis identification and classification, clear roles and responsibilities, communication protocols, emergency preparedness, hands-on practice like simulations or case studies, and assessments that measure whether learners can actually perform under pressure—not just recall facts.


During a crisis, leaders usually shift toward faster decision cycles and more direct communication. Roles often prioritize safety, transparent updates, short-term action plans, and clear delegation. The best leaders keep a steady presence, communicate what they know (and don’t know), and help teams stay aligned under stress.


Effective crisis communication is timely, honest, and consistent. It should use clear messaging across all channels, include active listening, and avoid jargon. Many teams do best with a single designated spokesperson (or tightly coordinated spokespeople) to prevent mixed signals while showing empathy to those affected.


Continuity planning helps organizations recover critical functions after a disruption, reducing downtime and protecting stability. A strong plan clearly defines essential tasks, assigns responsibilities, identifies dependencies, and includes practical workarounds so operations can continue—or restart quickly—when normal processes fail.

Ready to Create Your Course?

Try our AI-powered course creator and design engaging courses effortlessly!

Start Your Course Today

Related Articles