This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 5.9 of Cloud Monitoring, Compliance, and Risk Management
How cloud IR differs from traditional IR, the NIST SP 800-61 lifecycle applied to cloud, containment actions for compromised credentials and public S3 buckets, and CERT-In mandatory reporting.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
AWS Security Incident Response Guide
AWS comprehensive incident response whitepaper with playbooks for common cloud scenarios.
NIST SP 800-61r2: Computer Security Incident Handling
NIST SP 800-61r2 incident handling lifecycle guide applied to cloud environments.
CERT-In Incident Reporting Portal
CERT-In online incident reporting form for Indian organisations.
AWS GuardDuty Remediation Runbooks
GuardDuty finding types with recommended response actions for each finding.
Quadrant 4 · Self-Assessment
Monitoring, Auditing and Compliance
CloudTrail, VPC Flow Logs, AWS Config, GuardDuty, Security Hub, SCPs, and Indian compliance frameworks.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.