SSCP Cert Prep: 4 Incident Response and Recovery

SSCP Cert Prep: 4 Incident Response and Recovery

English | MP4 | AVC 1280×720 | AAC 48KHz 2ch | 1h 33m | 220 MB

Updated June 1, 2018

Earning the (ISC)2 Systems Security Certified Practitioner (SSCP) certification can help to accelerate your career by validating your understanding of essential IT security concepts. In this installment of the SSCP Cert Prep series, instructor Mike Chapple covers the objectives of Incident Response and Recovery, the fourth domain of the SSCP exam. Topics discussed include incident management-including how to build a security incident response program-and network and software forensics. Mike also explores disaster recovery, discussing the design of backup strategies, different options for alternate processing facilities, and how to evaluate the effectiveness of business continuity and disaster recovery plans.

Topics include:

  • Building an incident response program
  • Escalation and notification
  • eDiscovery process
  • Conducting investigations
  • System and file forensics
  • Reporting and documenting incidents
  • Business continuity planning
  • Validating backups
  • Testing BC/DR plans
Table of Contents

Introduction
1 Welcome

Incident Management
2 Build an incident response program
3 Incident communications plan
4 Incident identification
5 Escalation and notification
6 Mitigation
7 Recovery and reconstitution
8 Lessons learned and reporting
9 Building an incident response team

Investigations and Forensics
10 Conducting investigations
11 Evidence types
12 Introduction to forensics
13 System and file forensics
14 Network forensics
15 Software forensics
16 Embedded device forensics
17 Chain of custody
18 Reporting and documenting incidents
19 Electronic discovery eDiscovery

Business Continuity
20 Business continuity planning
21 Business continuity controls
22 High availability and fault tolerance

Disaster Recovery
23 Disaster recovery overview
24 Backups
25 Validating backups
26 Disaster recovery sites
27 Testing BC DR plans

Conclusion
28 What s next