Incident Response – Security+ Study Session 07 August 2020

Incident response is the process of handling real time threats to on organization. Incidents are defined as any event that threatens the confidentiality, integrity, or availability of data.

A robust incident response plan will ensure that an organization is prepared for these events before they occur.  These plans come in many different forms, but they all should include these elements:
– Incident definition
– Computer incident response team
– Reporting
– Escalation
– Roles and responsibilities
– Exercises

In today’s study session, we will be reviewing the idea of incident response and the incident response plan.

Incident response is included within Domain 5 of the Security+ course and I guarantee that you will see this concept on the exam.

Related Articles