Incident detection and response introduction theory and practical examples from concrete incidents. The training includes an overview of the most common type of incidents encountered in Luxembourg.
- How the majority of security incidents are detected
- How to secure evidences after detecting an incident
- How to perform acquisition of evidences (file-system, memory and network)
- How to interact with local CERTs and/or international CERTs
- How to balance remediation with incident response