Incident Response Phases – Lessons Learned
PICERL - Common incident response process / framework

Incident Response Phases – Lessons Learned

Lessons Learned is the final phase of the incident response cycle. This is where you identify the root cause of the incident and any problems or issues you faced with the response. Your findings should always feed back into the planning phase. This keeps the cycle working and improving.

Continue Reading Incident Response Phases – Lessons Learned
Incident Response Phases – Recovery
PICERL - Common incident response process / framework

Incident Response Phases – Recovery

Recovery is the fifth phase of the incident response cycle. This is the time to bring your services back online and restore normal business operations. Just make sure you do it in a secure manner.

Continue Reading Incident Response Phases – Recovery
Incident Response Phases – Eradication
PICERL - Common incident response process / framework

Incident Response Phases – Eradication

Eradication is the fourth phase of the incident response cycle. This is the implementation of more permanent measures to get the attacker out of the network and keep them out.

Continue Reading Incident Response Phases – Eradication
Incident Response Phases – Containment
PICERL - Common incident response process / framework

Incident Response Phases – Containment

Containment is the third phase of the IR Cycle. You investigate what happened and implement measures to stop the attack spreading or doing more harm than you are prepared to accept.

Continue Reading Incident Response Phases – Containment
Incident Response – Process Matters
PICERL - Common incident response process / framework

Incident Response – Process Matters

Breaches are pretty much inevitable. Having good incident response processes can be the difference between it being painful and it being catastrophic to your organisation.

Continue Reading Incident Response – Process Matters