Incident Response (Paperback)

Kenneth R. van Wyk, Richard Forno

  • 出版商: O'Reilly
  • 出版日期: 2001-08-11
  • 定價: $1,225
  • 售價: 2.4$299
  • 語言: 英文
  • 頁數: 240
  • 裝訂: Paperback
  • ISBN: 0596001304
  • ISBN-13: 9780596001308
  • 相關分類: 資訊安全
  • 立即出貨(限量)

買這商品的人也買了...

商品描述

Seventy percent of businesses reported security breaches in 2000, and the rate is on the rise. Is your organization ready to respond to such an incident head-on? Will you be able to tell whether an incident is an attack or a glitch in the system? Do you know how to assess the possible damage from an incident? Incident Response shows you how to answer questions like these and create a plan for exactly what to do before, during, and after an incident.

The authors of Incident Response draw on years of experience developing and taking part in incident response teams at the highest levels of government and business. They guide you through both the technical and administrative details of effective incident response planning as they describe:

  • What incident response is, and the problems of distinguishing real risk from perceived risk

  • The different types of incident response teams, and advantages and disadvantages of each

  • Planning and establishing an incident response team

  • State of the Hack® information about different types of attacks

  • Recommendations and details about available tools for incident response teams

  • Resources available to incident response teams



Whatever your organization's size or purpose, Incident Response shows how to put in place an incident-response process that's as planned, efficient, and businesslike as any other IT operation in a mature organization. Incidents happen, and being able to respond to them effectively makes good business sense.

商品描述(中文翻譯)

在2000年,百分之七十的企業報告了安全漏洞,而這個比例還在上升中。你的組織準備好正面應對這樣的事件了嗎?你能夠判斷一個事件是攻擊還是系統故障嗎?你知道如何評估一個事件可能造成的損害嗎?《事件應對》將告訴你如何回答這些問題,並在事件發生之前、期間和之後制定一個確切的計劃。

《事件應對》的作者們憑藉多年在政府和企業最高層開發和參與事件應對團隊的經驗,引導你通過技術和行政細節,有效地制定事件應對計劃,其中包括:

- 事件應對的定義,以及區分真實風險和感知風險的問題
- 不同類型的事件應對團隊,以及各自的優缺點
- 計劃和建立一個事件應對團隊
- 關於不同類型攻擊的《駭客狀態》信息
- 事件應對團隊可用工具的建議和詳細信息
- 事件應對團隊可用的資源

無論你的組織規模或目的如何,《事件應對》都會展示如何建立一個計劃、高效和商業化的事件應對流程,就像成熟組織中的其他IT操作一樣。事件總是會發生,能夠有效應對事件對業務來說是明智的選擇。