IT Security/Operational/Incident Response

< IT Security < Operational

This lesson covers incident response.

Objectives and Skills

Objectives and skills for the incident response portion of Security+ certification include:[1]

Summarize common incident response procedures.
  • Preparation
  • Incident identification
  • Escalation and notification
  • Mitigation steps
  • Lessons learned
  • Reporting
  • Recovery/reconstitution procedures
  • First responder
  • Incident isolation
    • Quarantine
    • Device removal
  • Data breach
  • Damage and loss control

Multimedia

  1. Watch YouTube: Preparing for an Incident - CompTIA Security+ SY0-401: 2.5.
  2. Watch YouTube: Incident Identification - CompTIA Security+ SY0-401: 2.5.
  3. Watch YouTube: Incident Escalation and Notification - CompTIA Security+ SY0-401: 2.5.
  4. Watch YouTube: Incident Mitigation and Isolation - CompTIA Security+ SY0-401: 2.5.
  5. Watch YouTube: Lessons Learned from Incidents - CompTIA Security+ SY0-401: 2.5.
  6. Watch YouTube: Incident Reporting - CompTIA Security+ SY0-401: 2.5.
  7. Watch YouTube: Incident Recovery and Reconstitution - CompTIA Security+ SY0-401: 2.5.
  8. Watch YouTube: First Responder - CompTIA Security+ SY0-401: 2.5.
  9. Watch YouTube: Data Breaches - CompTIA Security+ SY0-401: 2.5.
  10. Watch YouTube: Incident Damage and Loss Control - CompTIA Security+ SY0-401: 2.5.

References

  1. CompTIA: Security+ Certification Exam Objectives - Exam SY0-401
This article is issued from Wikiversity - version of the Sunday, December 13, 2015. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.