Course info
Jan 30, 2018
1h 3m

Cybersecurity thought leaders accept that every organization will suffer security incidents. In this course, Incident Detection and Response: The Big Picture, you will learn to detect and respond to security incidents before they occur to minimize damage to your organization. First, you will learn all about how to detect incidents. Next, you will explore the key activities you need to undertake when responding to a security incident. Finally, you will learn what it takes to prepare now before you are faced with the task of responding to an incident. By the end of this course, you will be more prepared prior to an incident occurring, to ensure a better outcome for your organization.

About the author
About the author

Richard has worked for over 20 years in various technology management roles working in card payments and regulated financial sectors. He spent several years deploying niche payment card solutions in Europe and more recently as CIO, serving the US mortgage sector. Richard specializes in IT Risk and Information Security management.

More from the author
Integrating Incident Response into DevSecOps
1h 47m
Dec 15, 2020
More courses by Richard Harpur
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi there, my name is Richard Harpur, and welcome to my course, Incident Detection and Response, The Big Picture. In this course, you're going to learn all the concepts required for performing incident detection and responding to incidents in your environment. A director of the FBI once said, there are two types of companies, those who have been hacked and those that will be. He said this back in 2012, but as we are seeing now, with such a surge in data breaches, we have to agree with this statement. Every organization is gearing up to respond to inevitable security breaches. Therefore, having the knowledge of security incident detection and response is critical for everyone working in cybersecurity today. In this course, you're going to learn the skills necessary for incident detection and response. I'm going to teach you the key concepts involved. This will help you to minimize damage and avoid mistakes when it's your turn to deal with a security incident. As we progress through this course, you will learn the differences between security events and security incidents, where detection and response sit within the incident response life cycle, you're going to learn about common data sources for good incident detection, what indicators of compromise are, where to source them, and how to use them. I will walk you through a typical security operation team configuration, so if you're thinking of working within a SOCK environment, as a security analyst, this will help you to understand how a SOCK operates. By the end of this course, you'll have a full picture, the big picture, of the activities involved in incident detection and response, and key techniques to help you in your incident response. And the best part, you don't need to have any prior knowledge or tools in order to complete this course. Just jump straight in and start learning. I hope you join me on this journey, Incident Detection and Response, The Big Picture, at Pluralsight.