dcsimg

5 Essential Incident Response Checklists

  • 5 Essential Incident Response Checklists-

    The 'Jump Bag'

    The SANS Institute, a leading source of information for incident responders, recommends that each team member keep a "jump bag" of important tools on hand. In the event of a security incident, this will enable them to initiate a "grab-and-go" response at any time. This checklist should contain all the tools needed for rapid response, including USB drives, up-to-date anti-malware applications, Forensic Toolkits (FTK) or software like EnCase, network cables, hard drive duplicators and more. One of the most important tools to keep in this bag is an incident handler's journal, which should be used to document the who, what, where, when and why of an incident.

1 | 2 | 3 | 4 | 5 | 6 | 7

5 Essential Incident Response Checklists

  • 1 | 2 | 3 | 4 | 5 | 6 | 7
  • 5 Essential Incident Response Checklists-5

    The 'Jump Bag'

    The SANS Institute, a leading source of information for incident responders, recommends that each team member keep a "jump bag" of important tools on hand. In the event of a security incident, this will enable them to initiate a "grab-and-go" response at any time. This checklist should contain all the tools needed for rapid response, including USB drives, up-to-date anti-malware applications, Forensic Toolkits (FTK) or software like EnCase, network cables, hard drive duplicators and more. One of the most important tools to keep in this bag is an incident handler's journal, which should be used to document the who, what, where, when and why of an incident.

Data breaches have become an unfortunate reality for most companies. If you haven't already experienced one, just wait. Whether state-sponsored or committed by an individual, hacking and the resulting loss of data, reputation and business profit must be a top priority for all organizations. And while it's important to keep up with the latest technologies to mitigate breach potential, it's equally as important to be ready to handle a breach once it occurs. A good way to do that is with incident response checklists.

When a security breach occurs, IT teams that are armed with incident response checklists will be better prepared to execute a fast and effective response. Good incident response checklists address particular scenarios and break down critical tasks into smaller pieces. They also help responders document everything that happens in an accurate, standard, and repeatable way. In this slideshow, AlienVault has identified the top five checklists that IT teams should have ready to go.