8 Incident Reporting

So far, we have learned what Incident Response (IR) is, how to build your IR team, and key metrics to monitor. We've also looked at incident handling and taken a deep dive into incident investigation. Now it's time to learn how to report incidents.

When a cybersecurity incident occurs, the organization should take responsibility for reporting details about the breach to various different entities. However, the information that is reported to each entity differs, as organizations should disseminate information on a need-to-know basis when reporting security incidents. This ensures that each entity only accesses the information that is most relevant or essential to them and avoids divulging too much information to some entities ...

Get Incident Response in the Age of Cloud now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Incident Response in the Age of Cloud by Dr. Erdal Ozkaya

8

Incident Reporting

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly