The CreatorCon Call for Content is officially open! Get started here.

Conceptual info regarding Security Incident Response and Vulnerability Response

KrithikaV
Tera Expert

10 hours ago - last edited 10 hours ago

Hi,

I have just started exploring the SIR and VR applications for an internal company assignment. I have several questions/doubts as I go through the tables, sample data, product documentation etc..

For ex:
1. When are child incidents created? If parent incident is closed, does all the child incidents also get closed?
2. Is taking assessment before closing the ticket an optional feature? Should assignees explicitly request assessment?  Can they by pass it or can it be made mandatory through a system setting?
3. Can specific stages of an incident have SLAs.. ie contain stage should be 2 hours rather than the whole incident

Where can I learn more about the concepts/best practices/norms of SIR practitioners?

Thanks in advance,
Krithika

0 Helpfuls
  • 169 Views
1 REPLY 1

Simon Hendery
Giga Patron
Giga Patron

8 hours ago

Hi @KrithikaV 

 

Have you reviewed the SecOps Fundamentals, VR Implementation, and SIR Implementation courses on SN University?

0 Helpfuls