Incident Response, Formal steps to handle security incidents, Preparation, Planning and tools needed before an incident, Detection, Identifying and reporting the incident, Containment, Isolating affected systems to prevent spread, Eradication, Removing malicious components or access, Recovery, Restoring systems to normal operation, Lessons Learned, Reviewing the incident and improving defenses, SIEM, Security Information and Event Management platform, SOAR, Security Orchestration, Automation, and Response platform, Syslog, Logging protocol used for event messages, Log Analysis, Reviewing logs to find anomalies or threats, Penetration Test, Authorized attack simulation to find weaknesses, Vulnerability Scan, Automated scan to identify vulnerabilities, DLP, Data Loss Prevention – protects sensitive data from leaking, Threat Intelligence, Feeds of information about current cyber threats.
0%
Security Operations
Del
Del
Del
etter
Danielpena4
College
CS
Rediger innhold
Skriv ut
Innebygd
Mer
Tildelinger
Ledertavle
Vis mer
Vis mindre
Denne ledertavlen er for øyeblikket privat. Klikk
Share
for å gjøre den offentlig.
Denne ledertavlen er deaktivert av ressurseieren.
Denne ledertavlen er deaktivert fordi alternativene er forskjellige fra ressurseieren.
Alternativer for tilbakestilling
Match opp
er en åpen mal. Det genererer ikke poengsummer for en ledertavle.
Pålogging kreves
Visuell stil
Skrifter
Krever abonnement
Alternativer
Bytt mal
Vis alle
Flere formater vises når du spiller av aktiviteten.
)
Åpne resultater
Kopier kobling
QR-kode
Slette
Gjenopprett automatisk lagring:
?
