Sale!

Intelligence Driven Incident Response 2nd Edition by Rebekah Brown, Scott J Roberts ISBN 9781098120672 1098120671

Name: Intelligence Driven Incident Response 2nd Edition by Rebekah Brown, Scott J Roberts ISBN 9781098120672 1098120671
SKU: EB-47685728
Availability: InStock

Original price was: $50.00.Current price is: $25.00.

Intelligence-Driven Incident Response, 2nd Edition Rebekah Brown & Scott J. Roberts Digital Instant Download

Author(s): Rebekah Brown & Scott J. Roberts

ISBN(s): 9781098120672, 1098120671

Edition: 2nd

File Details: EPUB, 1006 KB

Year: 2023

Language: English

SKU: EB-47685728 Category: Computers - Security Tag: Rebekah Brown Scott J Roberts

Description

Intelligence Driven Incident Response 2nd Edition by Rebekah Brown, Scott J Roberts – Ebook PDF Instant Download/Delivery: 9781098120672 ,1098120671
Full download Intelligence Driven Incident Response 2nd Edition after payment

Product details:

ISBN 10: 1098120671
ISBN 13: 9781098120672
Author: Rebekah Brown, Scott J Roberts

Using a well-conceived incident response plan in the aftermath of an online security breach enables your team to identify attackers and learn how they operate. But only when you approach incident response with a cyberthreat intelligence mindset will you truly understand the value of that information. In this updated second edition, you’ll learn the fundamentals of intelligence analysis as well as the best ways to incorporate these techniques into your incident response process.Each method reinforces the other: threat intelligence supports and augments incident response, while incident response generates useful threat intelligence. This practical guide helps incident managers, malware analysts, reverse engineers, digital forensics specialists, and intelligence analysts understand, implement, and benefit from this relationship.In three parts, this in-depth book includesThe fundamentals: get an introduction to cyberthreat intelligence, the intelligence process, the incident response process, and how they all work togetherPractical application: walk through the intelligence-driven incident response (IDIR) process using the F3EAD process: Find, Fix, Finish, Exploit, Analyze, and DisseminateThe way forward: explore big-picture aspects of IDIR that go beyond individual incident response investigations, including intelligence team building

Intelligence Driven Incident Response 2nd Edition Table of contents:

Part I: The Fundamentals

Introduction
- Intelligence as Part of Incident Response
- History of Cyber Threat Intelligence
- Modern Cyber Threat Intelligence
- The Way Forward
- Incident Response as a Part of Intelligence
- What Is Intelligence‑Driven Incident Response?
- Why Intelligence‑Driven Incident Response?
- Operations: SMN & SolarWinds
- Conclusion
Basics of Intelligence
- Intelligence and Research
- Data vs. Intelligence
- Sources and Methods
- Models and Collaboration
- Intelligence Cycle & Process Models
- Qualities of Good Intelligence
- Collection Methods, Context, & Bias
- Levels: Tactical, Operational, Strategic
- Confidence Levels
- Conclusion
Basics of Incident Response
- Incident‑Response Cycle
- Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned
- The Kill Chain (with Example)
- The Diamond Model & Basic Model
- Extensions: ATT&CK, D3FEND, Active Defense (Deny, Disrupt, Degrade, Deceive, Destroy)
- F3EAD: Find, Fix, Finish, Exploit, Analyze, Disseminate (plus Road Runner scenario)
- Picking the Right Model
- Conclusion

Part II: Practical Application

Find
- Actor‑Centric, Victim‑Centric, Asset‑Centric, Capability‑Centric, Media‑Centric Targeting
- Prioritizing, Categorizing Leads (Hard vs. Soft, Existing vs. Past Incidents)
- The Request for Information Process
Fix
- Intrusion Detection, Network & System Alerting
- Intrusion Investigation & Scoping
- Live & Memory Response, Disk Analysis
- Enterprise Detection & Response, Malware Analysis
- Hunting & Hypothesis Testing
Finish
- Ethical Boundaries (“Finish is Not Hacking Back”)
- Stages of Finish & Mitigation Procedures
  (Chapters 7–9 cover Exploit, Analyze & Disseminate; content progression is implied but not fully listed in the index)

Part III: The Way Forward

Team Building and Scaling (inferred from description)
- Intelligence team composition
- Integration of IDIR into organizational structure
- Strategic alignment and future outlook

People also search for Intelligence Driven Incident Response 2nd Edition:

what is incident response in cyber security

what is cybersecurity incident response

intelligence driven incident response pdf

what is intelligence driven incident response

what is security incident response

Tags: Rebekah Brown, Scott J Roberts, Intelligence Driven, Incident Response