MD1 Incident response tools: Incident response tools Flashcards
Security analyst
(Not much in the card)
As a security analyst, you won’t be using a single tool to monitor, detect, and analyze events. You’ll use detection and management tools to monitor system activity to identify events that require investigation. You’ll use documentation tools to collect and compile evidence. And you’ll also use different investigative tools for analyzing these events, like packet sniffers. New security technologies emerge, threats evolve, and attackers become stealthier to avoid detection. To become effective at detecting threats, you’ll need to continuously expand your security toolbox. That’s what makes the security field such an exciting one to be in. There’s always something new to be learned.