Security Incidents: Incident Handling vs Incident Response

Incident Response is defined as the summary of technical activities performed to analyze, detect, defend against and respond to an incident. HomeBlogpostsSecurityIncidents:IncidentHandlingvsIncidentResponse SecurityIncidents:IncidentHandlingvsIncidentResponse December20,2018|byMarineD.|Blogposts0Comments Securityincidentscontinuouslymakeourmorningheadlinesandcause enormousdamagesandreputationalharmtoorganizationsworldwide.It’sinevitablethatstrongerandcostlierincidentswillhappen.Tobeprepared,companiesrelyontheircomputersecurityincidenthandlingandresponseteams.But—whatdothetermsIncidentHandlingandIncidentResponsemean?Findout. WhatIsASecurityIncident? AccordingtotheComputerSecurityIncidentHandlingGuidebyNIST,onlyeventswithanegativeconsequenceareconsideredsecurityincidents.Sucheventscanbesystemcrashes,packetfloods,unauthorizeduseofsystemprivileges,unauthorizedaccesstosensitivedataandexecutionofdestructivemalware.Maliciousinsiders,availabilityissuesandlossofintellectualpropertyallfallunderthescopeofincidenthandlingandincidentresponseaswell. IncidentHandlingVSIncidentResponse IncidentResponseisdefinedasthesummaryoftechnicalactivitiesperformedtoanalyze,detect,defendagainstandrespondtoanincident. IncidentHandlingisdefinedasthesummaryofprocessesandpredefinedproceduralactionstoeffectivelyandactionablyhandle/manageanincident. Oftentimes,IncidentHandlingandIncidentResponsearesynonymous.NIST’sComputerSecurityIncidentHandlingGuidealsomentionsthesame,andprobablyforthebest. Choosingtodifferentiatethetwofunctionscanresultinincidentmiscommunicationandmishandling,duetolackoftechnicalknowledgefromtheincidenthandlers’side. Preferably,thetwofunctionsshouldbeindistinguishableonanorganizationandmannedwithtrained,oratleastknowledgeable,ITprofessionals.Notonlythat,butthetransitionfromhandlingtoresponseandtheincidentcommunication,ingeneral,shouldbeanextremelyfine-tunedandsilky-smoothprocess.Thismeans,thattheincidenthandlingandincidentresponsefunctionsshouldworkinsuchacooperative,communicativeandactionablemanner,soastolooklikeonefunction. AspiringtobecometheIRprofessionalcompanieswishtheyhad?ReadmoreabouthowtheIHRPtrainingcoursecanhelpadvanceyourblueteamingcareerhere. JoinusaswelaunchournewIHRPtrainingcourseliveonMarch26. .SAVEYOURSEAT. ConnectwithusonSocialMedia: Twitter | Facebook | LinkedIn | Instagram Tags:IHRP,incidenthandling,IncidentHandling&ResponseProfessional,incidentresponse Author:MarineD. Patience,persistence,andperspirationmakeanunbeatablecombinationforsuccess.😉 LeaveaReply CancelreplyYouremailaddresswillnotbepublished.MessageName Email Website ThissiteusesAkismettoreducespam.Learnhowyourcommentdataisprocessed. Previouspost Nextpost Categories Blogposts CompanyNews Researches Video Archive July2020 (3) June2020 (2) May2020 (5) April2020 (1) March2020 (6) February2020 (2) January2020 (3) October2019 (1) September2019 (2) June2019 (5) May2019 (9) April2019 (5) March2019 (8) February2019 (6) January2019 (8) December2018 (4) November2018 (7) October2018 (7) September2018 (5) August2018 (4) July2018 (8) June2018 (3) May2018 (5) April2018 (4) March2018 (7) February2018 (3) December2017 (4) November2017 (2) October2017 (11) August2017 (3) July2017 (5) June2017 (1) May2017 (5) April2017 (2) March2017 (6) February2017 (4) January2017 (3) December2016 (3) November2016 (7) October2016 (2) September2016 (6) August2016 (3) July2016 (1) June2016 (4) May2016 (1) April2016 (10) March2016 (9) February2016 (5) January2016 (3) December2015 (3) November2015 (5) October2015 (5) September2015 (3) August2015 (11) July2015 (8) June2015 (5) May2015 (6) April2015 (5) March2015 (5) February2015 (4) January2015 (4) December2014 (3) November2014 (4) October2014 (5) September2014 (5) August2014 (3) July2014 (1) March2014 (1) January2014 (1) September2013 (2) January2013 (1) September2012 (2) June2012 (1) May2012 (1) March2012 (1) September2011 (1) March2011 (1) January2011 (1) December2010 (3) August2010 (1) May2010 (4) April2010 (1) Gototopofpage