IT Examiner School eBook

First page Table of contents Previous page 168 Next page Last page

Internal Use Only

Module Objective Describe the two industry standard incident response frameworks & their components

Internal Use Only

NIST vs. SANs IRP Process

NIST

SANS

1.Preparation 2.Detection & Analysis 3.Containment, Eradication & Recovery 4.Post-Incident Activity

1.Preparation 2.Identification 3.Containment 4.Eradication 5.Recovery 6.Lessons Learned

Made with FlippingBook - Online magazine maker