Summarize the incident recovery and post-incident response process. CompTIA Cybersecurity Analyst (CySA+) Certification Exam Objectives Version 3.0 Containment Techniques Segmentation Segmentation involves limiting the scope of an incident by instituting barriers to prevent it from spreading to other parts of the network. At Layer 3, ACLs and shutting down interfaces may be an option. At […]
Given a scenario, analyze common symptoms to select the best course of action to support incident response. CompTIA Cybersecurity Analyst (CySA+) Certification Exam Objectives Version 3.0 Common Network-Related Symptoms Bandwidth consumption: It is important to have a baseline before an incident to know what is normal on the network. Deviation from the baseline can be […]
Explain the importance of communication during the incident response process. CompTIA Cybersecurity Analyst (CySA+) Certification Exam Objectives Version 3.0 Communication is important during an incident response. The stakeholders and types of communication need to be defined before an incident. Stakeholders Human Resources HR should provide the following responsibilities in reference to incident response. Develop job […]
It’s six o’clock on a Saturday, the regular crowd shuffles in, my phone starts ringing next to me, telling me the network is down. Or something like that. Last night I received a call from our helpdesk that one of our departments was complaining about a server not being reachable after a set of power […]
© Ben Story 2024.
© Pack IT Forwarding 2024. Powered by WordPress
