Chapter 2 - ISC2

The document discusses incident response and business continuity planning. It defines key incident response terminology and outlines the components and goals of an incident response plan. It also explains the importance of business continuity planning and lists the typical components of a business continuity plan such as immediate response procedures, notification systems, and contact information for critical supply chain members.

Uploaded by

Jamaal Jackson

Available Formats

Download as PDF, TXT or read online on Scribd

Download as pdf or txt

0% found this document useful (0 votes)

33 views2 pages

Chapter 2 - ISC2

Uploaded by

Jamaal Jackson

Available Formats

Download as PDF, TXT or read online on Scribd

Download as pdf or txt

You are on page 1/ 2

➢ Therefore, strict adherence to this Code is a condition of certification.

❖ Canons
➢ Protect society, the common good, necessary public trust and confidence,
and the infrastructure.
➢ Act honorably, honestly, justly, responsibly and legally.
➢ Provide diligent and competent service to principals.
➢ Advance and protect the profession.

Official Notes:

https://learn.isc2.org/content/enforced/9541-CC-SPT-GLOBAL-1ED-1M/build/chapter
_01/assets/EDU-CC-70175-ch01_Takeaway.pdf?ou=9541

Chapter 2:

Incident Response

❖ Incident Terminology
➢ Breach: Loss of control compromise or unauthorized use
➢ Event: Any occurance
➢ Exploit: Attack that exploits vulnerability
➢ Incident: Event that jeopardizes information or system
➢ Intrusion: Security event where system has been breached
➢ Threat: Anything that could impact the operations of the system and its
use
➢ Vulnerability: Weakness in the system or security
➢ Zero Day: A vulnerability that that does ot get detected due to
unrecognized pattern or methods
❖ Goal of Incident Response:
➢ Protect life, health and safety
➢ Adverse Event: Events with negative consequences for the system and its
use
➢ Incident Response Plan: Predetermined procedures to assess and combat
adverse events
➢ Business Continuity Management (BCM)
❖ Components of Incident Response Plan:
➢ Preparation
➢ Detection and Analysis
➢ Containment, Eradication and Recovery
➢ Post Incident Activity
❖ Incident Response Team
➢ Security Operations Center (SOC): Tema that monitors system for
disruptions or intrusions
➢ Computer Incident Response Teams (CIRT)
■ Determine scope of damage
■ Determine confidential information compromised
■ Implement recovery measures
■ Supervise implementation of added security measures to improve
security

Business Continuity (BC)

❖ Importance of BC:
➢ sustain business operations while recovering from a significant disruption
➢ A key part of the plan is communication, including multiple contact
methodologies and backup numbers in case of a disruption of power or
communications.
❖ Components of BC Plan:
➢ Proactive development of procedures to restore business operations after a
disaster or other significant disruption to the organization
■ List of the BCP team members, including multiple contact methods
and backup members
■ Immediate response procedures and checklists (security and safety
procedures, fire suppression procedures, notification of appropriate
emergency-response agencies, etc.)
■ Notification systems and call trees for alerting personnel that the
BCP is being enacted
■ Guidance for management, including designation of authority for
specific managers
■ How/when to enact the plan
■ Contact numbers for critical members of the supply chain
(vendors, customers, possible external emergency providers,
third-party partners)

Disaster Recovery

❖ Goal of DR: actions of emergency response personnel until business is restored to

full last-known reliable operations.
❖ DR Plan
➢ Executive summary providing a high-level overview of the plan

ISC2 2 Incident Response, Business Continuity and Disaster Recovery Concepts
100% (1)
ISC2 2 Incident Response, Business Continuity and Disaster Recovery Concepts
13 pages
Facility Business Continuity Plan BCP Template
100% (1)
Facility Business Continuity Plan BCP Template
21 pages
SI50 Security
No ratings yet
SI50 Security
94 pages
CH13 Testbank Crypto6e
100% (1)
CH13 Testbank Crypto6e
6 pages
L2 Incident Response
No ratings yet
L2 Incident Response
9 pages
L2.IncidentResponse.BusinessContinuity
No ratings yet
L2.IncidentResponse.BusinessContinuity
6 pages
002 - Cybersecurity Fundamentals Incident Response BCP DRP
No ratings yet
002 - Cybersecurity Fundamentals Incident Response BCP DRP
23 pages
CC Domain2
No ratings yet
CC Domain2
45 pages
Clear Your Knowledge On IRP DRP BCP
No ratings yet
Clear Your Knowledge On IRP DRP BCP
5 pages
Domain2
No ratings yet
Domain2
4 pages
Domain 2 - Incident,Business Continuity,DR
No ratings yet
Domain 2 - Incident,Business Continuity,DR
3 pages
Domain 2
No ratings yet
Domain 2
2 pages
Chapter 2_summary
No ratings yet
Chapter 2_summary
4 pages
Incident Response, BC, and DR Concepts
No ratings yet
Incident Response, BC, and DR Concepts
29 pages
Business Continuity Plan
No ratings yet
Business Continuity Plan
24 pages
Isc Chapter 2
No ratings yet
Isc Chapter 2
19 pages
Chapter 5 Reviewer - Incident Response and Contingency Planning
No ratings yet
Chapter 5 Reviewer - Incident Response and Contingency Planning
5 pages
BCP Template
No ratings yet
BCP Template
24 pages
ISC2 CC Domain2 Incident Response, Business Continuity (BC) and Disaster Recovery (DR) Concepts
No ratings yet
ISC2 CC Domain2 Incident Response, Business Continuity (BC) and Disaster Recovery (DR) Concepts
3 pages
2023+CC+Domain+2+Study+Guide+by+ThorTeaches Com+v1 1
No ratings yet
2023+CC+Domain+2+Study+Guide+by+ThorTeaches Com+v1 1
17 pages
Business Continuity in Action
No ratings yet
Business Continuity in Action
59 pages
An intrusion detection and prevention system
No ratings yet
An intrusion detection and prevention system
8 pages
Business Continuity Plan Template
No ratings yet
Business Continuity Plan Template
14 pages
CISSP - 9 Buisiness Continuity & Disaster Recovery Planning
100% (5)
CISSP - 9 Buisiness Continuity & Disaster Recovery Planning
53 pages
Chapter 6
No ratings yet
Chapter 6
16 pages
3 BCM Methodology
100% (2)
3 BCM Methodology
59 pages
Transcript 2
No ratings yet
Transcript 2
18 pages
Business Continuity & Disaster Recovery Planning: Information Security
100% (2)
Business Continuity & Disaster Recovery Planning: Information Security
56 pages
Module VII - BCP
No ratings yet
Module VII - BCP
132 pages
CISA Exam Domain 4 BCP DRP 1688478977
No ratings yet
CISA Exam Domain 4 BCP DRP 1688478977
7 pages
Continuity and Recovery Policy Template
No ratings yet
Continuity and Recovery Policy Template
4 pages
Chapter 2 - Incident Response, Business Continuity and Disaster Recovery Concepts
No ratings yet
Chapter 2 - Incident Response, Business Continuity and Disaster Recovery Concepts
12 pages
ViewFile
No ratings yet
ViewFile
13 pages
SLA, Disaster Recovery, BCP and Risk
100% (1)
SLA, Disaster Recovery, BCP and Risk
21 pages
BTI - Audit Matrix
No ratings yet
BTI - Audit Matrix
2 pages
Cisa Module 4 Part B - Business Resilience
No ratings yet
Cisa Module 4 Part B - Business Resilience
31 pages
Overview of BCDRP
No ratings yet
Overview of BCDRP
55 pages
BCP Internal Audit Form v3
No ratings yet
BCP Internal Audit Form v3
5 pages
Modul 3 Contingency Planning Part 2
No ratings yet
Modul 3 Contingency Planning Part 2
26 pages
Systems Availability and Business Continuity: Chapter Four Prepared By: Raval, Fichadia
No ratings yet
Systems Availability and Business Continuity: Chapter Four Prepared By: Raval, Fichadia
26 pages
10-Cisa It Audit - BCP and DRP
No ratings yet
10-Cisa It Audit - BCP and DRP
27 pages
Thor's+Study+Guide+ +CC+Domain+2
No ratings yet
Thor's+Study+Guide+ +CC+Domain+2
19 pages
Business Continuity and IS Training Template
No ratings yet
Business Continuity and IS Training Template
14 pages
Unit 3
No ratings yet
Unit 3
10 pages
Experiment 8: BCP-DR: Information Security 2019-20
No ratings yet
Experiment 8: BCP-DR: Information Security 2019-20
6 pages
Day 6
No ratings yet
Day 6
27 pages
BCP DR
No ratings yet
BCP DR
52 pages
L-5 Module - 2 Prepare Desister Recovery and Contingency Plan
100% (1)
L-5 Module - 2 Prepare Desister Recovery and Contingency Plan
54 pages
Business Continuity& Disaster Recovery Planning
No ratings yet
Business Continuity& Disaster Recovery Planning
18 pages
M-12 Toolkit Templates 1s Edition English
No ratings yet
M-12 Toolkit Templates 1s Edition English
107 pages
Domain 7 Security Operations
No ratings yet
Domain 7 Security Operations
24 pages
BCP DR Planning
No ratings yet
BCP DR Planning
20 pages
CKF-07-Security Operations-2015 PDF
No ratings yet
CKF-07-Security Operations-2015 PDF
85 pages
Agency Name Public Service Continuity Plan
100% (1)
Agency Name Public Service Continuity Plan
6 pages
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
No ratings yet
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
21 pages
March 2013 DRI Presentation
No ratings yet
March 2013 DRI Presentation
21 pages
Example Coop Continuity of Operations Program
No ratings yet
Example Coop Continuity of Operations Program
12 pages
W4 Crisis Management and Contingency Planning - PPT
No ratings yet
W4 Crisis Management and Contingency Planning - PPT
49 pages
Additional BCRP
No ratings yet
Additional BCRP
4 pages
SAFETY IN PETROLEUM FACILITIES TURNAROUND MAINTENANCE
From Everand
SAFETY IN PETROLEUM FACILITIES TURNAROUND MAINTENANCE
Chidi V. Efobi
No ratings yet
Comprehensive Guide for CISSP, CISA, CISM, GSEC. SSCP Certification Exams
From Everand
Comprehensive Guide for CISSP, CISA, CISM, GSEC. SSCP Certification Exams
Anand Vemula
No ratings yet
Security Professional Productivity
From Everand
Security Professional Productivity
Tom Henricksen
No ratings yet
Education (1903) PG 20
No ratings yet
Education (1903) PG 20
1 page
Education (1903) PG 16
No ratings yet
Education (1903) PG 16
1 page
Chapter 3 - ISC2
No ratings yet
Chapter 3 - ISC2
2 pages
Chapter 5 - ISC2
No ratings yet
Chapter 5 - ISC2
4 pages
Chapter 4 - ISC2
No ratings yet
Chapter 4 - ISC2
3 pages
Chapter 1 - ISC2
No ratings yet
Chapter 1 - ISC2
2 pages
A Presentation On Ethical Hacking
100% (1)
A Presentation On Ethical Hacking
30 pages
KRACK Attacks - Breaking WPA2
No ratings yet
KRACK Attacks - Breaking WPA2
14 pages
Empower-Employment and Training Department, Govt. of TamilNadu PDF
No ratings yet
Empower-Employment and Training Department, Govt. of TamilNadu PDF
1 page
Voucher5000 Up 860 04.23.231111
No ratings yet
Voucher5000 Up 860 04.23.231111
6 pages
CSF 20
No ratings yet
CSF 20
9 pages
Ethical Hacking MCQ
No ratings yet
Ethical Hacking MCQ
2 pages
689ihw3 Key
No ratings yet
689ihw3 Key
5 pages
EHDF TERM PAPER TOOLS - Sheet1
No ratings yet
EHDF TERM PAPER TOOLS - Sheet1
1 page
M.C.a. (Sem - IV) Paper - III - Network Security
No ratings yet
M.C.a. (Sem - IV) Paper - III - Network Security
197 pages
Voucher-OAMY WIFI ZONE - 3-HEURES-up-934-10.19.24
No ratings yet
Voucher-OAMY WIFI ZONE - 3-HEURES-up-934-10.19.24
3 pages
C.malicious Software
No ratings yet
C.malicious Software
3 pages
FIU - Edu How To Create A Work Order
No ratings yet
FIU - Edu How To Create A Work Order
1 page
DON CIO Memo of 23 June 2014 - DON Data at Rest Solution For Encryption of Controlled Unclassified Information CUI
No ratings yet
DON CIO Memo of 23 June 2014 - DON Data at Rest Solution For Encryption of Controlled Unclassified Information CUI
2 pages
Delegation-Based in On-Line and Off-Line Authentication Over Wireless Communication
No ratings yet
Delegation-Based in On-Line and Off-Line Authentication Over Wireless Communication
8 pages
A Security Analysis Comparison Between Signal, Whatsapp and Telegram
No ratings yet
A Security Analysis Comparison Between Signal, Whatsapp and Telegram
15 pages
Cybersecurity Boot Camp: Arizona State University
No ratings yet
Cybersecurity Boot Camp: Arizona State University
13 pages
Safety and Security
No ratings yet
Safety and Security
16 pages
Wireless Security WLAN 802.11: Esp. Ing. Fernando Boiero Maestría en Ciber-Seguridad
No ratings yet
Wireless Security WLAN 802.11: Esp. Ing. Fernando Boiero Maestría en Ciber-Seguridad
27 pages
PDMS
No ratings yet
PDMS
1 page
IT Security Management Checklist: 9 Key Recommendations To Keep Your Network Safe
No ratings yet
IT Security Management Checklist: 9 Key Recommendations To Keep Your Network Safe
11 pages
Authentication and Access Control - Course Outline (Updated)
No ratings yet
Authentication and Access Control - Course Outline (Updated)
7 pages
Flask Werkzeug
No ratings yet
Flask Werkzeug
6 pages
Role of Cryptography
No ratings yet
Role of Cryptography
23 pages
Combining Security Associations
No ratings yet
Combining Security Associations
3 pages
What Is Hacking & Types of Hacking
No ratings yet
What Is Hacking & Types of Hacking
6 pages
SAP BTP Security Dec 2021
No ratings yet
SAP BTP Security Dec 2021
65 pages
Chapter 1 Quiz - Cybersecurity Essentials
No ratings yet
Chapter 1 Quiz - Cybersecurity Essentials
8 pages
MYID Kiosk User Guide V1.0
No ratings yet
MYID Kiosk User Guide V1.0
34 pages