Specifications
book-author | Michael E. Whitman ; Herbert J. Mattord |
---|---|
file-type | |
isbn10 | 0357508327 |
isbn13 | 9780357508329 |
language | English |
publisher | Cengage Learning |
Book Description
“Principles of Incident Response & Disaster Recovery” by Michael E. Whitman and Herbert J. Mattord is a comprehensive guide designed to equip individuals and organizations with the necessary knowledge and strategies to effectively respond to incidents and recover from disasters. Here's an overview of the book:
- Introduction to Incident Response and Disaster Recovery: The book begins by introducing the fundamental concepts of incident response and disaster recovery, including the importance of preparedness, planning, and coordination in mitigating risks and minimizing the impact of disruptions.
- Risk Management and Assessment: Whitman and Mattord explore the principles of risk management and assessment, including identifying potential threats, vulnerabilities, and critical assets, as well as evaluating the likelihood and potential impact of various scenarios.
- Incident Response Planning: The authors discuss the process of developing incident response plans, including establishing roles and responsibilities, defining escalation procedures, and implementing communication protocols to ensure a coordinated and effective response to security incidents.
- Detection and Analysis of Security Incidents: The book covers techniques for detecting and analyzing security incidents, including intrusion detection systems, log analysis, forensic investigations, and malware analysis, to identify the nature and scope of security breaches.
- Incident Response and Handling Procedures: Whitman and Mattord provide guidance on incident response procedures, including containment, eradication, and recovery strategies, as well as documenting incidents, preserving evidence, and communicating with stakeholders throughout the response process.
- Business Continuity Planning: The authors discuss business continuity planning, including developing continuity strategies, establishing recovery objectives, and implementing measures to ensure the resumption of critical business functions following a disaster.
- Disaster Recovery Planning: The book examines the principles of disaster recovery planning, including data backup and recovery, system redundancy, and alternate site arrangements, to facilitate the restoration of IT infrastructure and services in the event of a disaster.
- Testing and Exercising Plans: Whitman and Mattord emphasize the importance of testing and exercising incident response and disaster recovery plans through tabletop exercises, simulations, and drills to validate procedures, identify gaps, and enhance preparedness.
- Continuous Improvement and Lessons Learned: The authors discuss the importance of continuous improvement in incident response and disaster recovery efforts, including conducting post-incident reviews, capturing lessons learned, and updating plans based on feedback and evolving threats.
“Principles of Incident Response & Disaster Recovery” serves as a valuable resource for individuals and organizations seeking to establish robust incident response and disaster recovery capabilities to protect against threats, mitigate risks, and maintain business resilience in an increasingly complex and dynamic threat landscape.
Reviews
There are no reviews yet.