Book description
This book teaches readers what they need to know to not only set up an incident response effort, but also how to improve existing incident response efforts. The book provides a comprehensive approach to incident response, covering everything necessary to deal with all phases of incident response effectively ¿ spanning from pre-incident conditions and considerations to the end of an incident.
Although technical considerations, (e.g. the particular binaries in Unix and Linux and dynamically linked libraries in Windows NT and Windows 2000) that need to be inspected in case they are corrupted, the types of logging data available in major operating systems and how to interpret it to obtain information about incidents, how network attacks can be detected on the basis of information contained in packets, and so on ¿ the major focus of this book is on managerial and procedural matters. Incident Response advances the notion that without effective management, incident response cannot succeed.
Table of contents
- Copyright
- About the Authors
- About the Technical Reviewers
- Acknowledgments
- Tell Us What You Think
- Introduction
- An Introduction to Incident Response
- Risk Analysis
- A Methodology for Incident Response
- Forming and Managing an Incident Response Team
- Organizing for Incident Response
- Tracing Network Attacks
- Legal Issues
- Forensics I
- Forensics II
- Responding to Insider Attacks
- The Human Side of Incident Response
- Traps and Deceptive Measures
- Future Directions in Incident Response
- RFC-2196
- Incident Response and Reporting Checklist
Product information
- Title: Incident Response: A Strategic Guide to Handling System and Network Security Breaches
- Author(s):
- Release date: November 2001
- Publisher(s): Sams
- ISBN: 1578702569
You might also like
book
Implementing an Information Security Management System: Security Management Based on ISO 27001 Guidelines
Discover the simple steps to implementing information security standards using ISO 27001, the most popular information …
book
Designing a HIPAA-Compliant Security Operations Center: A Guide to Detecting and Responding to Healthcare Breaches and Events
Develop a comprehensive plan for building a HIPAA-compliant security operations center, designed to detect and respond …
book
Network Security Strategies
Build a resilient network and prevent advanced cyber attacks and breaches Key Features Explore modern cybersecurity …
book
Information Security Handbook
Implement information security effectively as per your organization's needs. About This Book Learn to build your …