I have to echo the previous comments and say that an incident response plan is crucial.  It is worth noting that in some organisations this may be incorporated into a broader Business Continuity Plan.

Thanks very much for the welcomes!


Absolutely, I always find that if I don't know about something, then a web search can usually turn up some basic information which tends to be a good starting point to explore the subject further.


Well, I'm looking at CHFI as a possibilty. I'm particularly interested in the incident response (breaches etc) side of forensics but data recovery is also appealing to me. I have just started playing around with Helix on a USB stick and getting a feel for whats possible with it.

I guess that as I gain more experience, I'll work out where in the security field I most want to be.

Hey. Can yoo all show me how to be l337 haxxor and pwn the internetz and all the pr0n.

Just kidding 

Hi, I am a sysadmin in my 30s and looking to move into the security field. I have been reading these forums for a few weeks and have seen some interesting discussions and learnt a lot but I thought it was time I joined in.

Main interests are network security and forensics and I recently (well, 5 months or so ago) got my CEH.

I am not as experienced as some of you and more experienced than others. I will freely share my experience when I know what I'm talking about and enjoy learning when I don't.

As my first IT teacher (Commodore PC20 8086 machines with massive 20Mb HDDs   ) said - "I am ignorant. I am ignorant about a great many things. I will attempt to pass on some of the things about which I am not ignorant and admit to the things about which I am"

I am looking forward to the discussions.