Steve Anson, CISSP, EnCE, CCME, GIAC, GPEN, is a Director with Forward Defense, an IT security firm with a select clientele of government agencies and multinational companies with extreme IT security and digital investigation requirements. Steve has worked as a special agent with the US Department of Defense Criminal Investigation Service investigating computer crimes with national security implications. Steve has also worked as an instructor training hundreds of FBI agents in computer crime investigation, as an FBI task force agent, as an instructor for the US State Department training law enforcement in many other countries to help them establisher cyber investigation capabilities, and as an police officer founding and supervising the departments computer crimes investigations and forensics. Steve is a frequent speaker and trainer for SANS and other respected cybersecurity organizations.
Applied incident response Ebook
Incident Handlers need a diverse set of technical skills in their jobs. Applied Incident Response provides a concise review of each stage and skill in incident handling that will benefit new incident handlers and experienced professionals looking for a refresher or reference. Some of what incident handlers will learn includes: Incident readiness including planning with a framework such as NIST SP 800-61 Response and triage Acquiring memory including VMs and protecting your credentials Imaging physical and logical disks Collection and storage of network data and tools in the Security Onion Linux Distribution Event log analysis Memory analysis Malware analysis using Cuckoo and Mandingo Disk forensics Continuous improvement of incident readiness Threat hunting Adversary emulation with Caldera
Year | 2020 |
---|---|
Format | Ebook |
Author |
Steve Anson |
Publisher |
John Wiley |