cee oh em gee tee - "commgitt"
Login to access.
User: pw: ?

Incident Response (IR)

Proper response to different types of incidents is critical for limiting damages and quick recovery back to normal operations.

In this area, incidents are limited to of all sorts of threats to information assets. Specifically:

Four phases:

  1. Planning
  2. Detection
  3. Reaction
  4. Recovery
    • prioritization of efforts
    • damage assessment
    • computer forensics, digital forensics
    • recovery
    • after-action review (AAR)


Updated 2010-04-25