From the course: Exam Tips: CompTIA CySA+ (CS0-002)
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Incident response
- [Instructor] The fourth domain on the CySA+ exam, Incident Response, makes up 22% of the questions on the exam. It has four objectives. In the first objective for this domain, you need to explain the importance of the incident response process. You should know the roles played by various stakeholders, including human resources, legal counsel, marketing, and management. You'll also need to understand the purpose of communication processes and know how to limit incident response communication to trusted parties, prevent the inadvertent release of information, and use secure communication methods. You'll need to understand the incident response duties of technical staff, management, law enforcement, and incident response providers. You'll also need to understand the impact of the presence of special types of data, including personally identifiable information, PII; protected health information, PHI; payment card…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.