...
Incident response tools in these and other categories are generally available as single products, although they might also be included in integrated product suites that seek to provide incident responders with a common "workbench" of tools from multiple categories. Additionally, these tools might be featured in products having much broader purposes than simply incident response. For example, products that facilitate governance, risk, and compliance process, i.e., GRC systems, typically include an incident/issue workflow and documentation component.
See the Information Security Incident Management (ISO 16) chapter of the EDUCAUSE Information Security Guide for further training and tools guidance.
Additional Resources
- The Information Security Incident Management (ISO 16) chapter of the EDUCAUSE Information Security Guide provides an overview of effective incident management approaches, a list of recommended tools for incident handlers, links to example practices at selected institutions, and other helpful guidance.
- Special Publication 800-61: Computer Security Incident Handling Guide issued by the National Institute of Standards and Technology (NIST) provides guidelines on detecting and handling incidents.
- Special Publication 800-83: Guide to Malware Incident Prevention and Handling for Desktops and Laptops issued by NIST.
- Special Publication 800-86: Guide to Integrating Forensic Techniques into Incident Response issued by NIST.
- DEBIX, Inc. developed and makes publicly available a "Data Breach Incident Response Workbook." Though this general guidance resource was written for the private sector, much of the content is applicable to Higher Education as well.
Anchor download download
...