CYBERSECURITY INCIDENT MANAGEMENT MASTERS GUIDE – Volume 1: Preparation, Threat Response, & Post-Incident Activity (Cybersecurity Masters Guides)

Successfully responding to modern cybersecurity threats requires a well-planned, organized, and tested incident management program based on a formal incident management framework. It must be comprised of technical and non-technical requirements and planning for all aspects of people, processes, and technology. This includes evolving considerations specific to the customer environment, threat landscape, regulatory requirements, and security controls. Only through a highly adaptive, iterative, informed, and continuously evolving full-lifecycle incident management program can responders and the companies they support be successful in combatting cyber threats. This book is the second edition of the first volume in a series that explains in detail the full-lifecycle cybersecurity incident management program. It has been developed over two decades of security and response experience and honed across thousands of customer environments, incidents, and program development projects. It accommodates all regulatory and security requirements and is effective against all known and newly evolving cyber threats. This book will guide the reader on preparing for incident response/management and conducting each phase throughout the entire lifecycle.