This chapter covers the following topics:
Investigations: Concepts discussed include forensic and digital investigations and procedures, reporting and documentation, investigative techniques, evidence collection and handling, and digital forensics tools, tactics, and procedures.
Investigation Types: Concepts discussed include operations/administrative, criminal, civil, regulatory, industry standards, and eDiscovery investigations.
Logging and Monitoring Activities: Concepts discussed include audit and review, intrusion detection and prevention, security information and event management, continuous monitoring, and egress monitoring.
Resource Provisioning: Concepts discussed include asset inventory and management, ...