Getting Started with Incident Response
It has become normal for major cybersecurity companies to issue annual threat reports. One of the increasingly common issues that they have noted is an ineffective or delayed Incident Response (IR) protocol. Organizations have become slower in detecting and responding to incidents, which has partially fueled the increased costs, both financially and in terms of data loss, of cyber-attacks. Many organizations either lack practical IR plans or have poor IR management systems. Considering the ever-growing threat of being hacked, organizations should address these challenges promptly, as it raises the organization's awareness about how things can go wrong so that corrective and preventative actions can be taken promptly. That's where this book comes in.
In this chapter, you will be introduced to IR, and how it fits into the world of cybersecurity. We will examine the cybersecurity threat landscape, discuss the types...