Want to save your progress?
Create a free account to track your lessons and quizzes across devices.
Register Login
« Back to ClassCompleted: 0%

Security Governance & Incident Response

Page 1 of 1

Incident Response Lifecycle

When a breach occurs, having a plan is critical. The NIST Incident Response Lifecycle includes:

  1. Preparation: Establishing policies, tools, and a response team.
  2. Detection & Analysis: Monitoring systems to identify and confirm an incident.
  3. Containment: Stopping the spread of the attack (e.g., disconnecting a server from the network).
  4. Eradication: Removing the root cause (e.g., deleting malware, patching vulnerabilities).
  5. Recovery: Restoring systems to normal operation.
  6. Post-Incident Activity: Lessons learned and improving the process for next time.