II.
SkillArea overview
Reference · liveskill-area:incident-response-forensics
Incident Response and Forensics overview
Responding to security events with evidence discipline - containment, timeline reconstruction, root-cause analysis, and post-incident review.
Attributes
displayName
Incident Response and Forensics
description
Responding to security events with evidence discipline - containment,
timeline reconstruction, root-cause analysis, and post-incident review.
domains
expertiseLevels
- intermediate
- expert
Outgoing edges
applies_to2
- domain:cybersecurity·DomainCybersecurity
- specialization:devops-sre-platform·Specialization
requires_skill_area1
- skill-area:incident-response·SkillAreaIncident Response
Incoming edges
lib_requires_skill_area9
- lib-agent:cryptography-blockchain--incident-response·LibraryAgentincident-response
- lib-agent:security-compliance--forensic-analysis-agent·LibraryAgentforensic-analysis-agent
- lib-agent:security-compliance--trojan-detection-agent·LibraryAgenttrojan-detection-agent
- lib-agent:security-research--malware-analyst·LibraryAgentMalware Analyst Agent
- lib-skill:cryptography-blockchain--bug-bounty·LibrarySkillbug-bounty
- lib-skill:cryptography-blockchain--chain-forensics·LibrarySkillchain-forensics
- lib-skill:security-compliance--git-forensics-scanner·LibrarySkillgit-forensics-scanner
- lib-skill:security-research--incident-forensics·LibrarySkillincident-forensics
- lib-skill:security-research--security-sandbox·LibrarySkillsecurity-sandbox
prerequisite_for_learning1
- skill-area:application-security·SkillAreaApplication Security
requires_expertise2
- role:soc-analyst·RoleSOC Analyst
- role:forensic-analyst·RoleDigital Forensic Analyst
requires_skill_area1
- workflow:security-incident-response·WorkflowSecurity Incident Response