Planning a Security Incident Response

Overview

This course is designed to help you manage an enterprise security incident, while avoiding common errors, increasing both the effectiveness and efficiency of your incident response efforts.

Note: These courses will retire in June. Please enroll only if you are able to finish your coursework in time.

Syllabus

Module 1

Introduction
What is threat modelling?
The need for incident response plans
Assess vulnerabilities in your environment
Establish routine monitoring and review of network traffic and system performance
Log analysis

Module 2

Incident Response Policy, Plan, and Procedure Creation
Creation of a CSIRT
Establish CSIRT team roles
Establish governing policy

Module 3

Initial assessment of incident
Attack vectors
What are false positives and false negatives?
Determine the nature of the attack
Identify the systems that have been compromised
Choosing a containment strategy

Module 4

Post-incident activity
Protect the evidence while restoring functionality
Recommendations and Lessons learned
Security incident report

Taught by

Philip E. Helsel and Kimberly Rasmusson-Anderson

Reviews

Start your review of Planning a Security Incident Response

Heard of ChatGPT? AI-powered tutors are here!

Most common

Popular subjects

Popular courses

Planning a Security Incident Response

Overview

Syllabus

Taught by

Tags

Reviews

Heard of ChatGPT? AI-powered tutors are here!

Taught by

Tags

Identifying, Monitoring, and Analyzing Risk and Incident Response and Recovery

Stages of Incident Response

Technical Deep Dive with Incident Response Tools

Incident Response and Advanced Forensics

Incident Detection and Response

Penetration Testing, Incident Response and Forensics

200+ Online Courses to Prepare for 20 Microsoft Azure Certifications and Exams

100 Top FREE edX Courses of All Time

Massive List of MOOC-based Microcredentials

Never Stop Learning.