Forensics
Incident Response — Structured Process for Detecting, Containing, and Recovering from Cyber Incidents
Incident Response is the structured process organizations follow to detect, contain, eradicate, and recover from cybersecurity incidents. This SECMONS glossary entry explains incident response phases, operational workflows, and how effective response reduces dwell time and business impact.
Indicators of Compromise (IOC) — Observable Evidence of Malicious Activity
Indicators of Compromise (IOCs) are observable artifacts that suggest a system may have been breached. This SECMONS glossary entry explains what IOCs are, common IOC types, how they are used in detection and threat intelligence, and their limitations in modern defense.