Chapter 7Security Operations

This chapter covers the following topics:

  • Investigations: Concepts discussed include forensic and digital investigations and procedures, reporting and documentation, investigative techniques, evidence collection and handling, and digital forensics tools, tactics, and procedures.

  • Investigation Types: Concepts discussed include operations/administrative, criminal, civil, regulatory, industry standards, and eDiscovery investigations.

  • Logging and Monitoring Activities: Concepts discussed include audit and review, intrusion detection and prevention, security information and event management, continuous monitoring, and egress monitoring.

  • Resource Provisioning: Concepts discussed include asset inventory and management, ...

Get CISSP Cert Guide, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial