商品描述
Incident response is the method by which organisations take steps to identify and recover from an information security incident, with as little impact as possible on business as usual. Digital forensics is what follows - a scientific investigation into the causes of an incident with the aim of bringing the perpetrators to justice. These two disciplines have a close but complex relationship and require a balancing act to get right, but both are essential when an incident occurs. In this practical guide, the relationship between incident response and digital forensics is explored and you will learn how to undertake each and balance them to meet the needs of an organisation in the event of an information security incident. Best practice tips and real-life examples are included throughout.
商品描述(中文翻譯)
事件響應是組織採取措施以識別和從資訊安全事件中恢復的方法,目的是對日常業務造成最小影響。數位鑑識則是隨之而來的過程——對事件原因進行科學調查,旨在將肇事者繩之以法。這兩個領域之間有著密切但複雜的關係,需要平衡才能正確處理,但在事件發生時,兩者都是必不可少的。在這本實用指南中,將探討事件響應與數位鑑識之間的關係,您將學習如何進行每一項工作並平衡它們,以滿足組織在資訊安全事件發生時的需求。全書中包含最佳實踐建議和真實案例。
作者簡介
作者簡介(中文翻譯)
邁克·謝沃德(Mike Sheward)是 Accolade Inc 的資訊安全總監,並經營一家數位調查顧問公司 Secure Being LLC。他在英國和美國的資訊安全領域工作,主要專注於事件響應和數位取證。2017 年,邁克出版了一本基於他自己在數位取證領域冒險的書籍《數位取證日記》(Digital Forensic Diaries)。