Table Of Contents
- KEY DOCUMENTS
- REVIEW
Disclaimer | Attribution
This "Blue Team Field Manual" is derived from my personal notes compiled while working through the Blue Team Field Manual book authored by Alan White and Ben Clark.
KEY DOCUMENTS
REVIEW
- Organization Chart
- Network Diagrams
- Data Flow Diagrams
- Critical Asset, Data and Services List
- Rules of Engagement (ROE) Limitations and Boundaries
- Incident Response Plan
- Business Continuity Plan
- Disaster Recovery Plan
- Required Notification Guidance
- Actions to Date
- Physical Access Requirements
- On call/contracted resources
- Communication Plan
- Authority and Legal Conditions
- Threat Intelligence Summary
- Meetings and Deliverable Reporting Requirements
- Physical Security Plan
- Risk Assessment Decision Matrix
- Data and Info Disclosure Procedures
- Consent to Monitor, Collect and Assess Data
- MOA/MOU/NDA Documents and Requirements