0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Security Orchestration, Automation, and Response for Security Analysts

You're reading from Security Orchestration, Automation, and Response for Security Analysts Learn the secrets of SOAR to improve MTTA and MTTR and strengthen your organization's security posture

Product type Paperback

Published in Jul 2023

Publisher Packt

ISBN-13 9781803242910

Length 338 pages

Edition 1st Edition

Tools

Microsoft Sentinel

Concepts

Cybersecurity

Author (1):

Benjamin Kovacevic

View More author details

Table of Contents (14) Chapters

Preface

1. Part 1: Intro to SOAR and Its Elements

2. Chapter 1: The Current State of Cybersecurity and the Role of SOAR FREE CHAPTER

3. Chapter 2: A Deep Dive into Incident Management and Investigation

4. Chapter 3: A Deep Dive into Automation and Reporting

5. Part 2: SOAR Tools and Automation Hands-On Examples

6. Chapter 4: Quick Dig into SOAR Tools

7. Chapter 5: Introducing Microsoft Sentinel Automation

8. Chapter 6: Enriching Incidents Using Automation

9. Chapter 7: Managing Incidents with Automation

10. Chapter 8: Responding to Incidents Using Automation

11. Chapter 9: Mastering Microsoft Sentinel Automation: Tips and Tricks

12. Index

Why subscribe?

13. Other Books You May Enjoy

Investigating NIST and SANS incident management frameworks

As we mentioned at the beginning of this chapter, there are a few incident management frameworks that organizations follow through the incident life cycle. In this chapter, we will introduce the NIST and SANS frameworks.

The NIST framework consists of four steps, while the SANS framework consists of six steps. In the following table, we can see that both frameworks are similar and follow the same principle:

NIST Framework	SANS Framework
Step 1 – Preparation	Step 1 – Preparation
Step 2 – Detection and Analysis	Step 2 – Identification
Step 3 – Containment, Eradication, and Recovery	Step 3 – Containment Step 4 – Eradication Step 5 ...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Benjamin Kovacevic

Benjamin Kovacevic

Benjamin Kovacevic is a cyber-security enthusiast with hands-on experience with Microsoft XDR and SIEM platforms. Currently working with Microsoft Sentinel as a Product Manager, he is focusing on the SOAR component of the solution and working on new capabilities that will help SOCs improve their investigation and response. Benjamin is constantly working to improve his knowledge about cyber-security, as well as to share knowledge about Microsoft SOAR. He is the author of Microsoft Sentinel Automation training, as well as blog posts around tips and tricks to jump-start with Microsoft Sentinel Automation. Benjamin is originally from Bosnia and Herzegovina but currently resides in Ireland with his wife and son.

See other products by Benjamin Kovacevic

Personalised recommendations for you

Based on your interests and search pattern

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m