What do you think?
Rate this book
Incident Handling and Response: A Holistic Approach for an efficient Security Incident Management.
As security professionals, our job is to reduce the level of risk to our organization from cyber security threats. However Incident prevention is never 100% achievable. So, the best option is to have a proper and efficient security Incident Management established in the organization.
This book provides a holistic approach for an efficient IT security Incident Management.
Key topics includes,
1) Attack vectors and counter measures.
2) Detailed Security Incident handling framework explained in six phases.
_Preparation
_Identification
_Containment
_Eradication
_Recovery
_Lessons Learned/Follow-up
3) Building an Incident response plan and key elements for an efficient incident response.
4) Building Play books.
5) How to classify and prioritize incidents.
6) Proactive Incident management.
7) How to conduct a table-top exercise.
8) How to write an RCA report /Incident Report.
9) Briefly explained the future of Incident management.
Also includes sample templates on playbook, table-top exercise, Incident Report, Guidebook.
This book provides a holistic approach for an efficient IT security Incident Management.
Key topics includes,
1) Attack vectors and counter measures.
2) Detailed Security Incident handling framework explained in six phases.
_Preparation
_Identification
_Containment
_Eradication
_Recovery
_Lessons Learned/Follow-up
3) Building an Incident response plan and key elements for an efficient incident response.
4) Building Play books.
5) How to classify and prioritize incidents.
6) Proactive Incident management.
7) How to conduct a table-top exercise.
8) How to write an RCA report /Incident Report.
9) Briefly explained the future of Incident management.
Also includes sample templates on playbook, table-top exercise, Incident Report, Guidebook.
109 pages, Paperback
Published May 27, 2020
2 people are currently reading
8 people want to read
About the author
Jithin Alex
7 books7 followersJithin Alex, an accomplished Security Professional and Author, brings extensive expertise in security operations and proficiently managing a diverse range of security solutions and products across various technology sectors. Formerly serving as an senior engineer at a leading multinational corporation, he utilized his technical acumen and practical experience to author books that have garnered significant acclaim.
Notably, his book "Network Automation using Python 3" achieved recognition as one of the top new Automation books by Bookauthority.
Additionally, "Cisco Firepower Threat Defense NGFW" was acknowledged as one of the best Firewall books of all time.
Explore his technical articles, CTF challenges, and write-ups at www.jaacostan.com
Notably, his book "Network Automation using Python 3" achieved recognition as one of the top new Automation books by Bookauthority.
Additionally, "Cisco Firepower Threat Defense NGFW" was acknowledged as one of the best Firewall books of all time.
Explore his technical articles, CTF challenges, and write-ups at www.jaacostan.com
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 3 of 3 reviews
February 1, 2021
The incident response framework is aligned with SANS. However the bonus sections were interesting which emphasis on the importance of preparation process and the tasks associated with it. Those who needs to understand the process and theory of Incident Handling, this book is useful.
June 1, 2020
Mentioned briefly about various Incident Management elements. Playbooks, Tabletop and useful templates. Nice read. Recommended.
June 1, 2020
Some key topics are written very well, such as incident classification tree, playbooks. Overall useful.
Displaying 1 - 3 of 3 reviews