Overview/Description
Incident response and recovery procedures are essential to enterprise security operations. In this course, you will learn about e-discovery, data breach detection, collection, and analytics, data breach isolation, recovery, and response. Other topics include incident detection and response, disaster recovery and order of volatility, incident response support tools, and post-incident response. Finally, as a scenario exercise, you will name the three phases of e-discovery, list the eight phases of EDRM, list the seven orders of volatility, and name three components to make hashed images in a forensic investigation.
Target Audience
The CASP certification is designed for IT security professionals who have a minimum of ten years of experience in IT administration, including at least five years of hands-on technical security experience. The target audience for this course consists of systems/network/application security professionals that are preparing for the CASP Exam. The CASP certification exam is also accredited by ANSI to show compliance with the ISO 17024 standard for individuals who need it. Another audience consists of any IT professional who wants to gain an advanced understanding of how to secure modern enterprises beyond the Security+ or SSCP certifications.