Cybersecurity and Information Security

  1. Security Operations and Incident Management
    1. Security Monitoring and Analysis
      1. Security Information and Event Management
        1. Log Collection
          1. Log Sources
            1. Log Formats
              1. Log Normalization
              2. Event Correlation
                1. Rule-based Correlation
                  1. Statistical Correlation
                    1. Behavioral Analysis
                    2. Alerting Systems
                      1. Alert Generation
                        1. Alert Prioritization
                          1. Alert Management
                          2. Dashboards and Reporting
                            1. Real-time Dashboards
                              1. Executive Reporting
                                1. Compliance Reporting
                              2. Security Operations Center
                                1. SOC Architecture
                                  1. SOC Processes
                                    1. SOC Roles and Responsibilities
                                      1. SOC Metrics
                                      2. Threat Hunting
                                        1. Proactive Threat Detection
                                          1. Hypothesis Development
                                            1. Data Analysis Techniques
                                              1. Threat Intelligence Integration
                                            2. Vulnerability Management
                                              1. Vulnerability Assessment
                                                1. Asset Discovery
                                                  1. Vulnerability Scanning
                                                    1. Network Scanning
                                                      1. Web Application Scanning
                                                        1. Database Scanning
                                                        2. Vulnerability Analysis
                                                          1. Risk Scoring
                                                            1. False Positive Management
                                                          2. Patch Management
                                                            1. Patch Testing
                                                              1. Patch Deployment
                                                                1. Patch Verification
                                                                  1. Emergency Patching
                                                                  2. Remediation Management
                                                                    1. Remediation Planning
                                                                      1. Remediation Tracking
                                                                        1. Compensating Controls
                                                                      2. Incident Response
                                                                        1. Incident Response Planning
                                                                          1. Incident Response Policy
                                                                            1. Response Procedures
                                                                              1. Communication Plans
                                                                                1. Resource Allocation
                                                                                2. Incident Response Process
                                                                                  1. Preparation Phase
                                                                                    1. Team Training
                                                                                      1. Tool Preparation
                                                                                        1. Documentation
                                                                                        2. Detection and Analysis
                                                                                          1. Incident Detection
                                                                                            1. Incident Classification
                                                                                              1. Impact Assessment
                                                                                              2. Containment and Eradication
                                                                                                1. Short-term Containment
                                                                                                  1. Long-term Containment
                                                                                                    1. Evidence Preservation
                                                                                                      1. System Recovery
                                                                                                      2. Post-Incident Activities
                                                                                                        1. Lessons Learned
                                                                                                          1. Process Improvement
                                                                                                            1. Documentation Updates
                                                                                                          2. Computer Security Incident Response Team
                                                                                                            1. Team Structure
                                                                                                              1. Roles and Responsibilities
                                                                                                                1. Training Requirements
                                                                                                                  1. Communication Protocols
                                                                                                                2. Digital Forensics
                                                                                                                  1. Forensic Fundamentals
                                                                                                                    1. Chain of Custody
                                                                                                                      1. Evidence Handling
                                                                                                                      2. Evidence Acquisition
                                                                                                                        1. Disk Imaging
                                                                                                                          1. Memory Acquisition
                                                                                                                            1. Network Forensics
                                                                                                                              1. Mobile Device Forensics
                                                                                                                              2. Forensic Analysis
                                                                                                                                1. File System Analysis
                                                                                                                                  1. Timeline Analysis
                                                                                                                                    1. Malware Analysis
                                                                                                                                      1. Network Traffic Analysis
                                                                                                                                      2. Forensic Reporting
                                                                                                                                        1. Report Structure
                                                                                                                                          1. Expert Testimony

                                                                                                                                      Previous

                                                                                                                                      6. Identity and Access Management

                                                                                                                                      Go to top

                                                                                                                                      Next

                                                                                                                                      8. Governance, Risk Management, and Compliance