Into every life a little rain must fall. In the cybersecurity world, it is really a matter of WHEN a breach will occur rather than IF a breach will occur. Indeed, three of the five functions of the NIST Cybersecurity Framework deal with a breach which is already occurring: Detect, Respond, and Recover.
The domains discussed in this module prepare you to respond to an incident, and to quickly detect and quantify any events that could indicate an incident is in progress.
In this module we’ll examine:
- What are the key elements of an incident response plan?
- What systems and processes need to be in place prior to an incident occurring?
- How do you maintain situational awareness so that an incident is caught as early as possible?