Wikiversity

IT Security/Operational/Incident Response

< IT Security‎ | Operational

This lesson covers incident response.

Objectives and Skills edit

Objectives and skills for the incident response portion of Security+ certification include:[1]

Summarize common incident response procedures.
  • Preparation
  • Incident identification
  • Escalation and notification
  • Mitigation steps
  • Lessons learned
  • Reporting
  • Recovery/reconstitution procedures
  • First responder
  • Incident isolation
    • Quarantine
    • Device removal
  • Data breach
  • Damage and loss control

Readings edit

Multimedia edit

  1. YouTube: Preparing for an Incident - CompTIA Security+ SY0-401: 2.5
  2. YouTube: Incident Identification - CompTIA Security+ SY0-401: 2.5
  3. YouTube: Incident Escalation and Notification - CompTIA Security+ SY0-401: 2.5
  4. YouTube: Incident Mitigation and Isolation - CompTIA Security+ SY0-401: 2.5
  5. YouTube: Lessons Learned from Incidents - CompTIA Security+ SY0-401: 2.5
  6. YouTube: Incident Reporting - CompTIA Security+ SY0-401: 2.5
  7. YouTube: Incident Recovery and Reconstitution - CompTIA Security+ SY0-401: 2.5
  8. YouTube: First Responder - CompTIA Security+ SY0-401: 2.5
  9. YouTube: Data Breaches - CompTIA Security+ SY0-401: 2.5
  10. YouTube: Incident Damage and Loss Control - CompTIA Security+ SY0-401: 2.5

Activities edit

See Also edit

References edit

  1. CompTIA: Security+ Certification Exam Objectives - Exam SY0-401
Retrieved from "https://en.wikiversity.org/w/index.php?title=IT_Security/Operational/Incident_Response&oldid=1688367"