Introduction to the Incident Response Process
by Chris Prosise, Kevin Mandia, and Matt Pepe
This excerpt is reprinted with permission from McGraw-Hill, copyright 2003. For more information or to order the book, click here.
Written by FBI insiders, this book offers a look at the legal, procedural, and technical steps of incident response and computer forensics. Including chapters on forensic analysis and remediation, and real-world case studies. It further describes how to counteract and conquer today's hack attacks.
Chapter 2 addresses some basic questions about incident response: What is meant by a computer security incident, what are the goals of incident response, and who is involved in the incident response process. It continues by delving into the specifics of the incident response methodology.