Methods and Tools of Incident Response Processes
Incident Response (IR), like many other security processes, is a systematic process. Thus, several methods and tools are procedurally used to ensure that the goal of successfully handling a security event is met. An effective response to a security event can ensure the long-term continuance of a firm. However, many organizations often fail in mitigating incidents due to the use of trial and error or non-approved procedures.
Fortunately, the process of handling incidents is not mysterious, and adhering to certain methodologies as well as using certain tools can drastically improve the success rate of each IR exercise. This chapter explores the OODA loop in depth and explains the tools and tactics ...