You're reading from CompTIA CASP+ CAS-004 Certification Guide Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

Product type Paperback

Published in Mar 2022

Publisher Packt

ISBN-13 9781801816779

Length 654 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Mark Birch

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Security Architecture

2. Chapter 1: Designing a Secure Network Architecture FREE CHAPTER

3. Chapter 2: Integrating Software Applications into the Enterprise

4. Chapter 3: Enterprise Data Security, Including Secure Cloud and Virtualization Solutions

5. Chapter 4: Deploying Enterprise Authentication and Authorization Controls

6. Section 2: Security Operations

7. Chapter 5: Threat and Vulnerability Management

8. Chapter 6: Vulnerability Assessment and Penetration Testing Methods and Tools

9. Chapter 7: Risk Mitigation Controls

10. Chapter 8: Implementing Incident Response and Forensics Procedures

11. Section 3: Security Engineering and Cryptography

12. Chapter 9: Enterprise Mobility and Endpoint Security Controls

13. Chapter 10: Security Considerations Impacting Specific Sectors and Operational Technologies

14. Chapter 11: Implementing Cryptographic Protocols and Algorithms

15. Chapter 12: Implementing Appropriate PKI Solutions, Cryptographic Protocols, and Algorithms for Business Needs

16. Section 4: Governance, Risk, and Compliance

17. Chapter 13: Applying Appropriate Risk Strategies

18. Chapter 14: Compliance Frameworks, Legal Considerations, and Their Organizational Impact

19. Chapter 15: Business Continuity and Disaster Recovery Concepts

20. Chapter 16: Mock Exam 1

21. Chapter 17: Mock Exam 2

22. Other Books You May Enjoy

Chapter 8: Implementing Incident Response and Forensics Procedures

When considering all the threats that can impact an organization, it is important to ensure there are policies and procedures in place to deal with unplanned security-related events. To ensure timely responses to security incidents, we should implement detailed planning to provide controls and mitigation. It is important, given the nature of sophisticated, well-funded adversaries, that we use a holistic approach when deploying appropriate threat detection capabilities. Some approaches may involve automation, which can lead to occasional mistakes (false positives and false negatives), so it is important that we also ensure we include humans in the loop. The ever-increasing complexity of attacks and a large security footprint add to these challenges. There is also evidence that Advanced Persistent Threat (APT) actors are likely to target vulnerable organizations. Countering APTs may require that we use advanced forensics...

The rest of the chapter is locked

You're reading from CompTIA CASP+ CAS-004 Certification Guide Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

Table of Contents (23) Chapters

Chapter 8: Implementing Incident Response and Forensics Procedures

Authors (1)

Personalised recommendations for you

You're reading from CompTIA CASP+ CAS-004 Certification Guide Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

Table of Contents (23) Chapters

Chapter 8: Implementing Incident Response and Forensics Procedures

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you