From the course: Translating Cybersecurity for SMBs - Using the NIST Cybersecurity Framework 2.0
Join today to access over 24,700 courses taught by industry experts.
Address cyber incidents
From the course: Translating Cybersecurity for SMBs - Using the NIST Cybersecurity Framework 2.0
Address cyber incidents
- [Instructor] After a cybersecurity incident is detected, what do we do now? The next function in the cybersecurity lifecycle is the Respond function. And Respond helps us to know how to take action after we've detected a cybersecurity incident. Whether it was intentional or accidental, once an incident is declared, we need to stop the bleeding and get control over the situation. I like to think of the Respond function like an emergency room at a hospital. We all agree that something is wrong, or you wouldn't be there, but we may not know what the actual problem is yet because it probably came about quickly. There will be some symptoms, such as a high fever, bleeding, or some type of pain. And while we may not know why those things are happening, we know we need to do something about them in a hurry. In cybersecurity, an incident could be disclosing sensitive customer information, an unexplained system outage, or we may only know that a user clicked on a sketchy link and now they're…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.