This lesson covers incident recovery. Recovery for an incident is not just a technical solution, it involves everything about a business from legal representation to HR to IT. Outside entities such as law enforcement and remediation specialists may also be involved. The most important thing in incident recovery is stopping the threat and then keeping it from getting worst. Incident recovery includes the following steps: · Secure the network · Remove Files · Remove devices Finally, a big step regarding incidents are measures to prevent them from even happening in the first place; so education is key.
Incident Response and Advanced Forensics
In this course, you will gain an introduction to Incident Response, learn how to develop three important protection plans, perform advanced forensics on the incident, deep dive into insider and malware threats, and commence incident recovery.