March 31, 2021

Cyber Incident Response Playbook Best Practices

Hello everyone,

I am a young cybersecurity professional and my bos just assigned me the task of doing some research regarding the best practices to organize the playbooks for cyber incident response within my company.

Right now we do have some playbooks here and there on our network, but the whole thing is not well organized. I feel like we should improve this aspect before automating the processes with a SOAR.

I already did some research, but the output was unconclusive, I’m not sure if there are any best practices. Maybe I found something regarding the classification of the playbook by type (e.g. Malware, Phishing, Root Access, …) , but every documentation i dound is diffrent.

Could you help me? Do you know and book or documentation?
Do you have any experience on this field? Any hint is aprecieted.

Thank you in advance! :)

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.