Incident Response steps for beginners

in Project HOPE19 days ago

Cyber Security Office Center Analysis

Monitor and Detect for Alerts
Monitoring and detection
Vulnerability Scanning
Port Scanning
SIEM/EDR(Security Onion)
Data Quary
IDS

Triaging Alerts -
Network Analysis(static/Dynamic)
Log Analysis

Investigate the Alerts -
Malware Analysis
Network Analysis(static/Dynamic)
Active Directory
System Event Log Analysis

Recommendation Solutions - XDR (mitre att&k) framework.
Firewall Creation
IPS

Escalate generated Alerts
-Auditing
-Copywriting

#cybersecurity
19 days ago in Project HOPE by
$0.00
    3 votes
    Reply 0

    Coin Marketplace

    STEEM 0.30
    TRX 0.12
    JST 0.032
    BTC 57453.27
    ETH 2928.75
    USDT 1.00
    SBD 3.67