Security Incident Triage

IT Security | Intermediate

14 Videos | 57m 44s
Includes Assessment
Earns a Badge

Explore the importance of security incident triage in handling incidents in a timely and automated manner, in this 14-video course, which familiarizes learners with anomalies and activities that often require triage. Key concepts covered in this course include security triage fundamentals and the strategies to implement triage; tools used in security triage; and automation techniques and common tips and rules of thumb for security triage. Next, you will explore the importance of communication and stakeholder management in security triage; examine the approaches to detecting anomalies and handling them with security triage; and learn about common protocol anomalies that require triage. Continue by exploring the different levels of monitoring for incidents in security triage while looking at network monitoring of traffic, bandwidth, and the various protocols used; learn to analyze SSH activity and security events to look for; and learn how to analyze DNS activity, HTTPS activity, and system log activity. Finally, learn how to describe security events to look for in each activity.

WHAT YOU WILL LEARN

discover the key concepts covered in this course

describe the concepts of security triage and strategies to implement triage

describe the tools used in security triage

describe automation techniques in security triage

describe common tips and rules of thumb for security triage

describe the importance of communication and stakeholder management in security triage

describe approaches to detecting anomalies and handling them with security triage
describe common protocol anomalies that require triage

describe monitoring for incidents in security triage

analyze SSH activity and describe security events to look for

analyze DNS activity and describe security events to look for

analyze HTTPS activity and describe security events to look for

analyze system log activity and describe security events to look for

summarize the key concepts covered in this course

IN THIS COURSE

1.

Course Overview

1m 18s

UP NEXT
2.

Security Triage Strategy

4m 31s
3.

Security Triage Tools

2m 59s

FREE ACCESS
4.

Security Triage Automation

3m 20s

FREE ACCESS
5.

Security Triage Tips

4m 28s

FREE ACCESS
6.

Security Triage Stakeholders

3m 12s

FREE ACCESS
7.

Detecting Anomalies

3m 17s

FREE ACCESS
8.

Protocol Anomalies

4m 45s

FREE ACCESS
9.

Monitoring for Incidents

3m 25s

FREE ACCESS
10.

Analyzing for SSH Activity

4m 46s

FREE ACCESS
11.

Analyzing for DNS Activity

5m 19s

FREE ACCESS
12.

Analyzing for HTTPS Activity

5m 21s

FREE ACCESS
13.

Analyzing for Log Activity

4m 23s

FREE ACCESS
14.

Course Summary

42s

FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion of this course, which can be shared on any social network or business platform

Digital badges are yours to keep, forever.

COURSE SecOps Engineer: Threat Mitigation

COURSE Ethical Hacker: Risk Assessment

COURSE CompTIA Security+: Security Concepts in an Enterprise Environment

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE

COURSE Cloud Security Fundamentals: Basics of Cloud Operations

Business Skills

Business Skills

Business Skills

Business Skills

Business Skills

Business Skills

Business Skills

Business Skills

DO YOU LOVE YOUR CUSTOMERS?

DO YOU LOVE YOUR CUSTOMERS?

DO YOU LOVE YOUR CUSTOMERS?

DO YOU LOVE YOUR CUSTOMERS?

DO YOU LOVE YOUR CUSTOMERS?

DO YOU LOVE YOUR CUSTOMERS?

Business Skills

DO YOU LOVE YOUR CUSTOMERS?

Security Incident Triage

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE