Recently Updated Pages

In this reading, you’ll examine some best practices related to log management, storage, and prote...

Devices produced data in the form of events.As a refresher, events are observable occurrences tha...

Devices produced data in the form of events.As a refresher, events are observable occurrences tha...

History books. Receipts. Diaries.What do all these things have in common?They record events.Wheth...

That wraps up our discussion on incident investigation and response.Nice work on finishing up ano...

Previously, you explored the Containment, Eradication and Recovery phase of the NIST Incident Res...

Now that a security team has successfully contained eradicated and recovered from an incident, th...

Previously, you learned about how security teams develop incident response plans to help ensure t...

 In this video, we'll discuss the third phase of the incident response lifecycle. This phase incl...

Previously, you learned that triaging is used to assess alerts and assign priority to incidents. ...

  My name is Robin, and I am the program management lead for the Red Team at Google. I would say ...

As you've learned, security analysts can be flooded with a large amount of alerts on any given da...

links to original google doc Purpose 2 Using this playbook 2 Step 1: Receive phishing alert 2 ...

Have you ever taken a trip to a place you've never visited before? You may have used a tr...

Let's continue our discussion on how documentation provides transparency through documents ...

Documentation is any form of recorded content that is used for a specific purpose, and it is esse...

  So far, you've learned about the different types of detection methods that can be used to dete...

You may recall our discussion on the different documentation tools and types used by securi...

So far, you've learned about the different types of detection methods that can be used to detect ...

In this reading, you’ll be introduced to the concept of the Pyramid of Pain and you'll explore ex...