You're reading from Cisco Certified CyberOps Associate 200-201 Certification Guide Learn blue teaming strategies and incident response techniques to mitigate cybersecurity incidents

Product type Paperback

Published in Jun 2021

Publisher Packt

ISBN-13 9781800560871

Length 660 pages

Edition 1st Edition

Tools

Cisco

Concepts

Cybersecurity

Author (1):

Glen D. Singh

View More author details

Table of Contents (25) Chapters

Preface

1. Section 1: Network and Security Concepts

2. Chapter 1: Exploring Networking Concepts FREE CHAPTER

3. Chapter 2: Exploring Network Components and Security Systems

4. Chapter 3: Discovering Security Concepts

5. Section 2: Principles of Security Monitoring

6. Chapter 4: Understanding Security Principles

7. Chapter 5: Identifying Attack Methods

8. Chapter 6: Working with Cryptography and PKI

9. Section 3: Host and Network-Based Analysis

10. Chapter 7: Delving into Endpoint Threat Analysis

11. Chapter 8: Interpreting Endpoint Security

12. Chapter 9: Exploring Computer Forensics

13. Chapter 10: Performing Intrusion Analysis

14. Section 4: Security Policies and Procedures

15. Chapter 11: Security Management Techniques

16. Chapter 12: Dealing with Incident Response

17. Chapter 13: Implementing Incident Handling

18. Chapter 14: Implementing Cisco Security Solutions

19. Chapter 15: Working with Cisco Security Solutions

20. Chapter 16: Real-World Implementation and Best Practices

21. Chapter 17: Mock Exam 1

22. Chapter 18: Mock Exam 2

23. Assessment

24. Other Books You May Enjoy

Understanding the NIST SP 800-86 components

Many organizations implement an Incident Response Plan (IRP) to ensure that when a security incident occurs, the impact is minimal, and the organization is able to recover very quickly. Part of an IRP includes the need for forensics techniques to determine how and when the security incident occurred, who is responsible, what was compromised, and what was taken.

Imagine if each organization created and implemented their own IRP without any external guidance from a trusted organization. In this event, the expected results within each organization may not always be the desired outcome. NIST created a Special Publication (SP) 800-86, containing the recommendations as a Guide to Integrating Forensic Techniques into Incident Response. The objective of NIST SP 800-86 is to help organizations with their forensic investigation of security incidents. Overall, the publication provides specific guidelines in terms of how to perform forensic techniques...

The rest of the chapter is locked

You're reading from Cisco Certified CyberOps Associate 200-201 Certification Guide Learn blue teaming strategies and incident response techniques to mitigate cybersecurity incidents

Table of Contents (25) Chapters

Understanding the NIST SP 800-86 components

Authors (1)

Other recommended products

Personalised recommendations for you

You're reading from Cisco Certified CyberOps Associate 200-201 Certification Guide Learn blue teaming strategies and incident response techniques to mitigate cybersecurity incidents

Table of Contents (25) Chapters

Understanding the NIST SP 800-86 components

Unlock this book and the full library FREE for 7 days

Authors (1)

Other recommended products

Personalised recommendations for you