Appendix A: CSIRT Flashcards Preview

CCNA Cyber Ops SECOPS > Appendix A: CSIRT > Flashcards

Flashcards in Appendix A: CSIRT Deck (13)
Loading flashcards...
1

Coordination centers

Coordinate handling of incidents across various CSIRTs. (i.e. US-CERT)

2

Analysis Centers

Synthesize data. Look for trends in incident activity.

3

Vendor teams

Vendor team that handles vulnerabilities in their products. Also remediation and mitigation.

4

Incident response providers

MSSP

5

CSIRT Constituency

Who they support

6

CSIRT relationship to others

Peers

7

CSIRT place in org.

Roots (mostly in the SOC)

8

Reactive service

Triggered by an event, request,

9

Proactive service

Prepare, protect systems

10

Triage function

Help desk level activities.

11

Handling function

Reviews incident report. Analysis. Responses. Notification.

12

Feedback function

Supports giving feedback on issues not related to specific incident.

Interface with media.

13

Optional announcement function

Provides advisories