10 Incident Response and Recovery

In previous chapters, we learned how to prevent and detect a threat. Now, it is time to face the threat head-on. We will learn what to do if something happens to the organization and how we recover the business if it’s lost due to an attack – that is, by using incident response plans and disaster recovery plans.

In this chapter, you will learn how to make incident response and disaster recovery plans, how to test those plans, and what to do with cyber insurance. This chapter will also cover the NIST: Respond & Recover methodology and explain it thoroughly with examples from incident response teams.

In this chapter, we will cover the following topics:

Incident response planning
Testing incident response plans ...

Get Cybersecurity Blue Team Strategies now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cybersecurity Blue Team Strategies by Kunal Sehgal, Nikolaos Thymianis

10

Incident Response and Recovery

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly