Network Security, Firewalls, and VPNs, 3rd Edition

Incident Response

Incident response is the planned reaction to negative situations or events. Inevitably, security breaches, or at least attempts to breach security, are going to occur. When those events affect the organization or its abilities to perform its tasks in any way, incident response is triggered. The goals of incident response are to minimize downtime, minimize loss, and restore the network environment back to a secured normal state as quickly as possible.

Most incident response solutions include six primary steps or phases (see FIGURE 14-4)):

A flow diagram explains the phases of incident response. — **FIGURE 14-4** The phases of incident response.

Preparation—Select and train security ...

Get Network Security, Firewalls, and VPNs, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Network Security, Firewalls, and VPNs, 3rd Edition by J. Michael Stewart, Denise Kinsey

Incident Response

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly