5 Incident Response and Digital Forensics
Efficiency is doing things right; effectiveness is doing the right things.
—Peter F. Drucker
5.1 Introduction
Incident response (IR) and digital forensics (DF) need both efficiency and effectiveness because if they are not done correctly, your efforts will be futile. In this chapter, the fundamental processes for IR and digital forensic analysis will be discussed. Just today, an incident occurred on my laptop, no less. Similarly to every other day, I dock my laptop upon my arrival and start checking my e-mail. Within a few minutes, the IT admin is at my door and announces that we have a problem. He said he received a message from the main IT office—over 300 miles away ...
Get What Every Engineer Should Know About Cyber Security and Digital Forensics, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
