Episode notes
On this episode of CISO Tradecraft, you can learn the 10 steps to Incident Response Planning:
- Establish a Cyber Incident Response Team
- Develop a 24/7 Contact list for Response Personnel
- Compile Key Documentation of Business-Critical Networks and Systems
- Identify Response Partners and Establish Mutual Assistance Agreements
- Develop Technical Response Procedures for Incident Handling that your team can follow:
- External Media - An alert identifies someone plugged in a removable USB or external device
- Attrition - An alert identifies brute force techniques to compromise systems, networks, or applications. (Examples Attackers trying thousands of passwords on login pages)
- Web - A Web Application Firew ...