Cyber Intelligence-Driven Risk by Richard O. Moore III

Author:Richard O. Moore, III [Moore, Richard O.]
Language: eng
Format: epub
ISBN: 9781119676898
Publisher: Wiley
Published: 2020-12-10T00:00:00+00:00

NOTES

Even in a rote corporate environment there lies the potential that your forensic analysis may play a role in legal proceedings. As was stated at the beginning of this chapter, what makes a forensic professional a forensicator is not their subject matter expertise in all aspects of technology. A properly trained and licensed forensic examiner is an expert in the forensic process. Their work, while supporting executive management and aiding to protect corporate environments, may be called upon for the courts.

Acquiring digital artifacts should be considered long before an investigation is initiated and prior to an incident ever occurring.

The forensic lab environment should be closed off and secured from access to any nonessential personnel. Additionally, the lab should be “air-gapped” from the corporate networks.

In summary, the process by which a forensic examiner approaches forensic analysis is strictly influenced by the toolset chosen and the task at hand.

Forensics capabilities paired with a cyber threat intelligence team can effectively provide analysis to derive protective countermeasures, and identify and learn the tactics, techniques, and procedures (TTPs) of the threat actor.

Build your Security or Cyber Incident Response Team with certified forensic analysts.

Integrate your forensic capabilities as shown in the CI-DR™ model.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.