Understanding the typical incident response life cycle helps us prepare for the time when an incident is detected. In this activity, we study the phases of the incident response and investigate potential tools and applications we can use to help us in our investigation.
Read the NIST paper listed under the Readings section above. Write a two- to three-page paper in APA style and format describing the phases of a typical incident response, identify a set of tools the response team members can use in their efforts, and list some of the documentation that should be kept by the team. Be sure to include citations and references as appropriate.
Note: The title page and references page do not count towards the page count.
Here is a paper link http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf