Incident Response by Kenneth R. van Wyk
Seventy percent of businesses reported security breaches in 2000, and the rate is on the rise. This text shows how to be able to tell whether an incident is an attack or a glitch in the system, how to assess the possible damage from an incident, and how to create a plan for exactly what to do before, during, and after an incident. The authors of "Incident Response" guide the reader through both the technical and administrative details of effective incident response planning as they describe: what incident response is, and the problems of distinguishing real risk from perceived risk; the different types of incident response teams, and advantages and disadvantages of each; planning and establishing an incident response team; the state of the Hack information about different types of attacks; recommendations and details about available tools for incident response teams; and resources available to incident response teams. Whatever the size or purpose of the organization, this book shows how to put in place a planned, efficient and business-like incident-response process.