| Like what you see? Get it in one document for easy printing! |
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31) |
|
| Test yourself better with 300 extra Security+ questions! |
| Get It Here! |
|
|
3.4.4 Incident Response
An intrusion has been detected…
Now what? Unless you are restricting yourself to observation only,
as an academic exercise, the next step is to respond to it. This activity
is known in security circles as “incident response”, and it
includes activities like stopping further damage, investigating what
happened, and performing required cleanup.
 Incident Response
Incident response is the collective name for all of the activities performed in response to a perceived computer security related incident. It includes both “defensive” activities such as securing the network, and “offensive” activities like investigating the incident and possibly reporting details to law enforcement.
|
|
Quick navigation to subsections and regular topics in this section
|
| If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support! |
|
|
Home -
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.
|
