Sign up to save your podcasts
Or
Share Episode 5 - NIST SP 800-61 Computer Security Incident Handling Guide (Post-Incident Activity)
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 5 - NIST SP 800-61 Computer Security Incident Handling Guide (Post-Incident Activity)
Send us a text
This is the biggest episode from a content perspective so far. I'm excited to share it with you.
Episode Highlights:
- How to run post-incident debriefs and post-mortems.
- Involving external teams
- Using lessons learned to form actionable insights.
- Key questions to address in incident analysis.
- Effective report writing strategies, including timelines and executive summaries.
- Evaluating and improving incident response procedures and tools preparation.
- Engaging broader teams in the debrief process for better cooperation.
- Tracking and documenting incident response efforts for continuous improvement.
Key Takeaways:
- Post-incident debriefs and post-mortems afford the most value for learning, improving incident response and preventing reoccurance.
- Using structured frameworks and guidelines, like NIST 800-61, provide valuable direction for how to run your debrief and post-mortem meeting.
- Effective communication, documentation, and cooperation across teams enhance incident handling and future preparedness.
View all episodes
By Clint MarsdenSend us a text
This is the biggest episode from a content perspective so far. I'm excited to share it with you.
Episode Highlights:
- How to run post-incident debriefs and post-mortems.
- Involving external teams
- Using lessons learned to form actionable insights.
- Key questions to address in incident analysis.
- Effective report writing strategies, including timelines and executive summaries.
- Evaluating and improving incident response procedures and tools preparation.
- Engaging broader teams in the debrief process for better cooperation.
- Tracking and documenting incident response efforts for continuous improvement.
Key Takeaways:
- Post-incident debriefs and post-mortems afford the most value for learning, improving incident response and preventing reoccurance.
- Using structured frameworks and guidelines, like NIST 800-61, provide valuable direction for how to run your debrief and post-mortem meeting.
- Effective communication, documentation, and cooperation across teams enhance incident handling and future preparedness.