From the course: SSCP Cert Prep: 4 Incident Response and Recovery
Join today to access over 24,200 courses taught by industry experts.
Reporting and documenting incidents
From the course: SSCP Cert Prep: 4 Incident Response and Recovery
Reporting and documenting incidents
- [Instructor] Communication is an essential part of cybersecurity incident response efforts. Incident response teams must notify key stakeholders about the incident, provide updates, and maintain permanent records of security investigations. There are three important components to incident reporting. The first is notification, ensuring that everyone who needs to know about an incident is aware that an incident response effort is underway. The second is real-time updates, ensuring that those who need to be familiar with the response efforts are kept informed along the way. And the third is documentation, ensuring that there is a permanent record kept of the incident details and the response effort. Notification is a key responsibility of incident responders. As early as possible in an incident, responders should trigger notification of key personnel, both inside the organization and extra responders, if applicable. Every…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
(Locked)
Conducting investigations3m 52s
-
(Locked)
Evidence types3m 29s
-
(Locked)
Introduction to forensics3m 21s
-
(Locked)
System and file forensics4m 25s
-
(Locked)
Network forensics4m 16s
-
(Locked)
Software forensics4m 56s
-
(Locked)
Mobile device forensics1m 11s
-
(Locked)
Embedded device forensics2m 33s
-
(Locked)
Chain of custody1m 52s
-
(Locked)
Reporting and documenting incidents3m 33s
-
(Locked)
Electronic discovery (ediscovery)3m 7s
-
(Locked)
-
-
-
-