Detail publikace

What do incident response practitioners need to know? A skillmap for the years ahead

HRANICKÝ Radek, BREITINGER Frank, RYŠAVÝ Ondřej, SHEPPARD John, SCHAEDLER Florin, MORGENSTERN Holger a MALIK Simon. What do incident response practitioners need to know? A skillmap for the years ahead. Forensic Science International: Digital Investigation, roč. 37, č. 2, 2021, s. 23-34. ISSN 2666-2825. Dostupné z: https://www.sciencedirect.com/science/article/pii/S2666281721000925
Název česky
Co musí znát experti v oblasti Incident response? Mapa dovedností pro nadcházející roky
Typ
článek v časopise
Jazyk
angličtina
Autoři
Hranický Radek, Ing., Ph.D. (UIFS FIT VUT)
Breitinger Frank (UniLi)
Ryšavý Ondřej, doc. Ing., Ph.D. (UIFS FIT VUT)
Sheppard John, Dr. (SETU)
Schaedler Florin (UniLi)
Morgenstern Holger (HS-Albsig)
Malik Simon (HS-Albsig)
URL
Abstrakt

šDigital forensics incident response (DFIR) specialists are expected to possess multidisciplinary skills including expert knowledge of computer-related principles and technology. On the other hand, recent studies suggest that existing training and study programs may not fully address the needs of future DFIR professionals. To reveal possible gaps in practitioners education and identify the most needed skills, we built a skillmap for DFIR where we followed a threefold approach: (1) an online survey among DFIR experts; (2) a review of training programs; and (3) an analysis of job listings on LinkedIn. Each source was first analyzed on its own and the findings were merged into a DFIR skillmap which is the main contribution of this article. The results show that network forensics and incident handling are the most demanded domains of skills. While these are covered by existing courses the newly desired skills, in particular, cloud forensics and encrypted data, need to get more space in training and education. We hope that this article provides educators with information on ways to improve in the years ahead.

Rok
2021
Strany
23-34
Časopis
Forensic Science International: Digital Investigation, roč. 37, č. 2, ISSN 2666-2825
Vydavatel
Elsevier Science
DOI
UT WoS
000686127700002
EID Scopus
BibTeX
@ARTICLE{FITPUB12485,
   author = "Radek Hranick\'{y} and Frank Breitinger and Ond\v{r}ej Ry\v{s}av\'{y} and John Sheppard and Florin Schaedler and Holger Morgenstern and Simon Malik",
   title = "What do incident response practitioners need to know? A skillmap for the years ahead",
   pages = "23--34",
   journal = "Forensic Science International: Digital Investigation",
   volume = 37,
   number = 2,
   year = 2021,
   ISSN = "2666-2825",
   doi = "10.1016/j.fsidi.2021.301184",
   language = "english",
   url = "https://www.fit.vut.cz/research/publication/12485"
}
Nahoru