Objective:

• Students will be able to investigate common incident response activities.

Standards:

CompTIA Security+ SYO-701 Objective:

4.8 – Explain appropriate incident response activities

• Process
  • Preparation
  • Detection
  • Analysis
  • Containment
  • Eradication
  • Recovery
  • Lessons learned
• Training
• Testing
  • Tabletop exercise
  • Simulation
• Root cause analysis
• Threat hunting
• Digital forensics
  • Legal hold
  • Chain of custody
• Acquisition
• Reporting
• Preservation
• E-discovery

Guiding Question:

What are some common incident response activities?

Resources:

• Lesson 4.8.1 – Incident Response.pptx Presentation available on Google Classroom

Assignment:

1. Read the Lesson 4.8.1 – Incident Response.pptx presentation in today’s class.
2. Complete the Unit 3 – Incident Response Check for Understanding activity using the materials provided in Google Classroom.
3. Complete the Lab – Cuckoo.pptx Activity in class using the materials provided in Google Classroom.
4. To confirm completion the lab activity, upload a screenshot displaying the results of your Cuckoo analysis identifying the malware file to today’s Google Classroom post.

Assigned: January 12th, 2026
Teacher Pacing Due Date: January 13th, 2026