Chapter 2

Immediate Response

Chapter Outline

Information in this Chapter

• Being Prepared to Respond

• Data Collection

Introduction

Much of what we read regarding incident response is that computer security incidents are a fact of life when we employ IT resources. It’s long been said that it’s not a matter of if your organization will experience a computer security incident, but when that incident will occur. If the media has made anything clear at all during the first half of 2011, it’s that no organization is immune to computer security incidents, whether that’s a web page defaced, sensitive corporate emails exposed, or sensitive ...

Get Windows Forensic Analysis Toolkit, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.