NIST SP 800-61 Rev 3: Computer Security Incident Handling Guide 3.6 3.6.1 3.6.2 csc19 Incident Response
This NIST Special Publication offers guidance for incident response by identifying best practices and other recommendations.
SEARCH RESULTS
NIST SP 800-84: Guide to Test, Training, and Exercise Programs for IT Plans and Capabilities 3.6 3.6.3 csc19 Incident Response
This NIST Special Publication helps organizations in designing, developing, conducting, and evaluating test, training, and exercise events.
NIST SP 800-86: Guide to Integrating Forensic Techniques into Incident Response 3.6 3.6.1 3.6.2 csc19 Incident Response
This guide from NIST discusses how important forensics can be for an organization during a cyber incident.
SANS Security Response Plan Policy 3.6 3.6.1 3.6.2 csc19 Incident Response
This is a policy template from SANS for incident response management.
SANS Whitepaper – Incident Handler’s Handbook 3.6 3.6.1 3.6.2 csc19 Incident Response
This SANS whitepaper details procedural incident response steps, supplemented by tips and tricks for use on Windows and UNIX platforms.
SANS Whitepaper – Incident Handling Annual Testing and Training 3.6 3.6.1 3.6.2 csc19 Incident Response
This SANS whitepaper discusses the need for annual incident handling testing and training.
State of Washington – Tabletop Exercises 3.6 3.6.1 3.6.2 csc19 Incident Response
This link from the State of Washington discusses examples of tabletop exercises that can be used during monthly meetings to help organizations prepare for cybersecurity events.
YouTube – Building and Testing an Effective Incident Response Plan 3.6 3.6.1 3.6.2 csc19 Incident Response
This YouTube video covers key components of an effective incident response plan.