Cybersecurity professionals often find themselves called upon to participate in electronic discovery efforts that result from legal actions involving their firms. When organizations are involved in legal disputes, they have an obligation to preserve evidence related to that dispute and produce it in response to a legitimate legal order. In this video, learn about the role that cybersecurity professionals play in the eDiscovery process.
- [Narrator] Cybersecurity professionals often find…themselves called upon to participate…in electronic discovery efforts…that result from legal actions involving their firms.…When organizations are involved in legal disputes,…they have an obligation to preserve evidence…related to that dispute and produce it…in response to a legitimate legal order.…We'll talk about three major steps…in the electronic discovery process:…preservation, collection, and production.…When an organization receives notice…of potential litigation, the first step…they should take is the issuance of a litigation hold…to individuals and departments that may have…electronic or paper records relevant to the dispute.…
This usually takes the form of a memo…sent to those individuals and departments…informing them of the potential litigation…and instructing them that they are required…to preserve any records related to the dispute.…It's important to remember that preservation…includes more than just not intentionally…destroying information.…Once the organization has a reason to believe…
- Building an incident response program
- Escalation and notification
- eDiscovery process
- Conducting investigations
- System and file forensics
- Reporting and documenting incidents
- Business continuity planning
- Validating backups
- Testing BC/DR plans
Skill Level Intermediate
Q: This course was updated on 06/01/2018. What changed?
A: We updated three videos, covering creating an incident response program, communications plan, and response team.