That bad actors have long been able to infiltrate a network and wait for the right moment to attack is alone enough to expand incident response processes. Now that some of these attacks have the capacity to spread laterally, it’s an imperative.
To that end, incident response may be best considered in a framework that mirror’s Maslow’s Hierarchy with three primary organizational needs: triage, scoping and threat hunting.
via Maslow’s hierarchy of needs for incident response | CSO Online.