To understand how to respond to a security incident within an organization, the business must first provide training for its staff and educate them on their corporate practices, procedures, and processes that are in place to safeguard the infrastructure. Security incidents can come in all shapes and sizes, from small and unlikely threats to immediate and imminent attacks whereby sensitive customer data could be stolen and extracted from your systems. With this in mind, training is an ongoing pursuit and, as such, you should employ and adopt runbooks that provide clear instructions and actions that you can carry out for particular security incidents that may occur and perhaps could be foreseen.
Over time, these security incident runbooks will be modified and adapted as new processes, techniques, and technologies are applied within your organization. Staff should be familiar with the security tools and features offered by AWS...