mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-16 12:45:17 +03:00
31 lines
1.1 KiB
Markdown
31 lines
1.1 KiB
Markdown
# Standards for Cloud Incident Containment
|
|
|
|
## NIST SP 800-61 Rev 2 - Incident Handling Guide
|
|
- Containment strategies for cloud environments
|
|
- Evidence preservation in ephemeral infrastructure
|
|
|
|
## CSA Cloud Incident Response Framework
|
|
- Cloud Security Alliance incident response procedures
|
|
- Shared responsibility model for incident handling
|
|
- Multi-cloud containment strategies
|
|
|
|
## AWS Well-Architected Framework - Security Pillar
|
|
- Incident response automation with AWS services
|
|
- CloudTrail, GuardDuty, and Security Hub integration
|
|
- Reference: https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/
|
|
|
|
## Microsoft Cloud Security Benchmark
|
|
- Azure Defender incident response procedures
|
|
- Sentinel playbook automation
|
|
- Reference: https://learn.microsoft.com/en-us/security/benchmark/azure/mcsb-incident-response
|
|
|
|
## GCP Security Best Practices
|
|
- Cloud Armor and VPC Service Controls
|
|
- Security Command Center integration
|
|
- Chronicle SIEM for cloud forensics
|
|
|
|
## MITRE ATT&CK Cloud Matrix
|
|
- Cloud-specific tactics, techniques, and procedures
|
|
- Containment mapping to ATT&CK techniques
|
|
- Reference: https://attack.mitre.org/matrices/enterprise/cloud/
|