Steps would you take to prepare for types of incidents

  1. Why is it critical for an organization to have a DoS attack response plan well before it happens?
  2. Use the four steps of the NIST computer security process to write a summary and analysis of each of the steps in a DDoS attack scenario.

a. Step 1 – Preparation: What steps would you take to prepare for this type of incident?

b. Step 2 – Detection and Analysis: Steps you would need to take in order to detect a potential DDoS incident and confirm if the incident is accurate

c. Step 3 – Containment Eradication and Recovery: What actions do you need to take to contain and recover from a DDoS incident

d. Step 4 – Post-Incident Activity – Describe the steps you would take post incident