IT Security/Operational/Incident Response
Appearance
This lesson covers incident response.
Objectives and Skills
[edit | edit source]Objectives and skills for the incident response portion of Security+ certification include:[1]
- Summarize common incident response procedures.
- Preparation
- Incident identification
- Escalation and notification
- Mitigation steps
- Lessons learned
- Reporting
- Recovery/reconstitution procedures
- First responder
- Incident isolation
- Quarantine
- Device removal
- Data breach
- Damage and loss control
Readings
[edit | edit source]Multimedia
[edit | edit source]- YouTube: Preparing for an Incident - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Identification - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Escalation and Notification - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Mitigation and Isolation - CompTIA Security+ SY0-401: 2.5
- YouTube: Lessons Learned from Incidents - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Reporting - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Recovery and Reconstitution - CompTIA Security+ SY0-401: 2.5
- YouTube: First Responder - CompTIA Security+ SY0-401: 2.5
- YouTube: Data Breaches - CompTIA Security+ SY0-401: 2.5
- YouTube: Incident Damage and Loss Control - CompTIA Security+ SY0-401: 2.5