Carnegie Mellon University – Incident Response Plan 3.6 3.6.1 3.6.2 csc19 Incident Response
This resource from CMU provides an example procedure for how to respond to information security incidents.
SEARCH RESULTS
Center for Internet Security – Tabletop Exercises Six Scenarios to Help Prepare Your Cybersecurity Team 3.6 3.6.1 3.6.2 csc19 Incident Response
This white paper is about tabletop exercises can be used to help cybersecurity teams develop tactical strategies for securing their systems.
Kroll – It’s Not If But When: How to Build Your Cyber Incident Response Plan 3.3 3.3.5 3.6 3.6.1 3.6.2 Audit and Accountability csc19 Incident Response
In this article, Kroll provides a high-level view of how to build an IRP and the types of questions you will want to address as you begin planning.
NIST SP 800-184 Guide for Cybersecurity Event Recovery 3.6 3.6.1 3.6.2 csc19 Incident Response
This NIST Special Publication focuses on providing plans and procedures to facilitate resuming normal business operations as quickly as possible during a cybersecurity event.
NIST SP 800-61 Computer Security Incident Handling Guide 3.6 3.6.1 3.6.2 csc19 Incident Response
This NIST Special Publication offers guidance for incident response by identifying best practices and other recommendations.
NIST SP 800-86 Guide to Integrating Forensic Techniques into Incident Response 3.6 3.6.1 3.6.2 csc19 Incident Response
This guide from NIST discusses how important forensics can be for an organization during a cyber incident.
SANS Security Response Plan Policy 3.6 3.6.1 3.6.2 csc19 Incident Response
This is a policy template from SANS for incident response management.
SANS Whitepaper – Incident Handler’s Handbook 3.6 3.6.1 3.6.2 csc19 Incident Response
This SANS whitepaper details procedural incident response steps, supplemented by tips and tricks for use on Windows and UNIX platforms.
SANS Whitepaper – Incident Handling Annual Testing and Training 3.6 3.6.1 3.6.2 csc19 Incident Response
This SANS whitepaper discusses the need for annual incident handling testing and training.
State of Washington – Tabletop Exercises 3.6 3.6.1 3.6.2 csc19 Incident Response
This link from the State of Washington discusses examples of tabletop exercises that can be used during monthly meetings to help organizations prepare for cybersecurity events.