Syllabus SOC-IR
07
תגובה לאירועי סייבר
Incident response process
- Response coordination with relevant entities
- Factors contributing to data criticality
Incident response procedure
- Preparation
- Detection and analysis
- Containment
- Eradication and recovery
- post-incident activities
Potential indicators of compromise & Incident Response in action
- Network-related
- Host-related
- Application-related
- Real life Incident Response cases
חזרה לדף קורס SOC-IR - לחצו כאן