Lesson 18: Analysis (RS.AN)

In this lesson students will learn about the importance of Cyber Incident Handling Analysis to help prepare their organization for the inevitable Cybersecurity breach. In this lesson we will clarify some of the technical requirements required to Analyze the Cybersecurity Incident to discover the root-cause and impact. These requirements include investigating alerts, assessing the impact, performing forensics, categorizing incidents, and responding to Cybersecurity weaknesses. In this lesson we will review many valuable considerations for conducting Cybersecurity Incident Analysis. We will also provide an exercise for students to practice their newfound knowledge and develop new Cybersecurity skills.