From the course: CISSP Cert Prep (2021): 7 Security Operations
Unlock the full course today
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Build an incident response program
From the course: CISSP Cert Prep (2021): 7 Security Operations
Build an incident response program
- [Instructor] While we strive to protect our systems and information against a wide variety of threats, the grim reality is that no matter how many controls we put in place, there's still a possibility that we'll fall victim to a cybersecurity incident. As we explore the incident response process in this course, we'll focus on using a standard incident response process endorsed by the National Institute for Standards and Technology, NIST. If you'd like more information on this process, you can find a complete reference in the NIST Computer Security Incident Handling Guide. It's published online as NIST Special Publication 800-61, and it's widely used as a standard reference throughout the cybersecurity field. Every organization should develop a cybersecurity incident response plan that outlines the policies, procedures, and guidelines that the organization will follow when an incident takes place. This preparation process is…
Contents
-
-
-
-
-
-
-
Build an incident response program4m 13s
-
Creating an incident response team2m 15s
-
Incident communications plan2m 42s
-
Incident identification4m 26s
-
Escalation and notification2m 29s
-
Mitigation2m 22s
-
Containment techniques3m
-
Incident eradication and recovery5m 28s
-
Validation2m 24s
-
Post-incident activities3m 50s
-
Incident response exercises1m 37s
-
-
-
-