SSCP Cert Prep: 4 Incident Response and Recovery
1h 50mIntermediate2021-11-16
Authors

Mike Chapple
Teaching Professor at the University of Notre Dame
Course details
If you are preparing for the SSCP certification exam, or are looking to keep your cybersecurity skills current, this course can help you. Fourth in the series of SSCP prep courses, this course covers the incident response and recovery domain of the test. Mike Chapple, a professor of information technology, analytics, and operation, guides you through preparing yourself to earn this gold standard certification. Mike begins with incident management, covering each step from building an incident response program to incident response exercises. He explains how to conduct investigations and introduces you to forensics. Mike shows you the business continuity efforts you will need, such as continuity planning, continuity controls, and making the best use of high availability systems and fault tolerance. He steps you through recovering from a disaster, then concludes by showing you how to build an emergency response plan.
Skills covered
Incident ResponseCybersecurityCert Prep
Concepts
0. Introduction
- 01 - Respond to incidents
- 02 - What you need to know
- 03 - Study resources
1. Incident Management
- 04 - Build an incident response program
- 05 - Creating an incident response team
- 06 - Incident communications plan
- 07 - Incident identification
- 08 - Escalation and notification
- 09 - Mitigation
- 10 - Containment techniques
- 11 - Incident eradication and recovery
- 12 - Validation
- 13 - Post-incident activities
- 14 - Incident response exercises
2. Investigations and Forensics
- 15 - Conducting investigations
- 16 - Evidence types
- 17 - Introduction to forensics
- 18 - System and file forensics
- 19 - Network forensics
- 20 - Software forensics
- 21 - Mobile device forensics
- 22 - Embedded device forensics
- 23 - Chain of custody
- 24 - Reporting and documenting incidents
- 25 - Electronic discovery (ediscovery)
3. Business Continuity
- 26 - Business continuity planning
- 27 - Business continuity controls
- 28 - High availability and fault tolerance
4. Disaster Recovery
- 29 - Disaster recovery overview
- 30 - Backups
- 31 - Restoring backups
- 32 - Disaster recovery sites
- 33 - Testing BC DR plans
- 34 - After-action reports
5. Emergency Response
- 35 - Building an emergency response plan
Conclusion
- 36 - Continuing your studies
Related courses
- RAG, AI Apps, and AI Agents for Cybersecurity and Networking
- Introduction to Applied Cryptography and Cryptanalysis by Infosec
- ISC2 Systems Security Certified Practitioner (SSCP) Cert Prep
- CCNA Cybersecurity (200-201) v1.2 Cert Prep
- Automated Threat Detection: Building SOC Solutions with Splunk, TheHive, and Snort
- Azure Event Hubs for Developers
- Applied ChatGPT for Cybersecurity by Infosec
- Corporate Security Policies by Infosec