Chapter 4Incident Response and Recovery (Domain 4)
THE SSCP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:
- Domain 4.0 Incident Response and Recovery
- 4.1 Support incident lifecycle (e.g., National Institute of Standards and Technology (NIST), International Organization for Standardization (ISO))
- Preparation
- Detection, analysis, and escalation
- Containment
- Eradication
- Recovery
- Lessons learned/implementation of new countermeasure
- 4.2 Understand and support forensic investigations
- Legal (e.g., civil, criminal, administrative) and ethical principles
- Evidence handling (e.g., first responder, triage, chain of custody, preservation of scene)
- Reporting of analysis
- 4.3 Understand and support Business Continuity Plan (BCP) and Disaster Recovery ...
- 4.1 Support incident lifecycle (e.g., National Institute of Standards and Technology (NIST), International Organization for Standardization (ISO))
Get (ISC)2 SSCP Systems Security Certified Practitioner Official Practice Tests, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
