User Account

All Pages

Computer security incident response team

Assignment Help Basic Computer Science
Reference no: EM132862950

Scenario

After the recent security breach, Always Fresh decided to form a computer security incident response team (CSIRT). As a security administrator, you have been assigned the responsibility of developing a CSIRT policy that addresses incident evidence collection and handling. The goal is to ensure all evidence collected during investigations is valid and admissible in court.

Consider the following questions for collecting and handling evidence:

1. What are the main concerns when collecting evidence?

2. What precautions are necessary to preserve evidence state?

3. How do you ensure evidence remains in its initial state?

4. What information and procedures are necessary to ensure evidence is admissible in court?

Tasks

Create a policy that ensures all evidence is collected and handled in a secure and efficient manner. Remember, you are writing a policy, not procedures. Focus on the high-level tasks, not the individual steps.

Address the following in your policy:

 Description of information required for items of evidence

 Documentation required in addition to item details (personnel, description of circumstances, and so on)

 Description of measures required to preserve initial evidence integrity

 Description of measures required to preserve ongoing evidence integrity

 Controls necessary to maintain evidence integrity in storage

 Documentation required to demonstrate evidence integrity

Reference no: EM132862950

Questions Cloud

Remote access method evaluation : Discuss with your peers which of the two remote access solutions, virtual private networks (VPNs) or hypertext transport protocol secure (HTTPS)
Calculate the payback period for each project : Assume a $200,000 investment and the following cash flows for two alternative capital projects: Calculate the payback period for each project
Company took to achieve operational excellence : Note how they are a differentiator in the market. Explain what actions the company took to achieve operational excellence.
Data6000 capstone - industry case studies assignment : DATA6000 Capstone - Industry Case Studies Assignment Help and Solution - Generate a unique business question which can be explored using available data sources
Computer security incident response team : After the recent security breach, Always Fresh decided to form a computer security incident response team (CSIRT).
Describe business strategy and business model : Choose a company in the IT industry and describe its business strategy and business model.
What amounts will be included in Myles Net Income : During 2020, the company redeems Myles's shares at a price of $14 per share. What amounts will be included in Myles's Net Income for Tax Purposes
Explain major components of blockchain : Explain the major components of blockchain. Be sure to include how blockchain is affecting a global economy and how you see it growing in the future.
What are the five goals of punishment : Name the differences between the juvenile and adult justice systems? What are the five goals of punishment? Which of these do you you believe is most efficient?

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Preceding principles for probabilistic conditional

Which of the preceding principles are valid for this probabilistic conditional? Explain why or why not. Discuss the main difference that you found in your answers.

  Assessment phase of rmf

Consider the network risks that may be discovered during the assessment phase of RMF. Assessments can be time consuming.

  Visual basic-polymorphism-overriding

Define and explain the function of polymorphism and overriding. In your description, provide an example for polymorphism as well as overriding.

  Determine a set of heuristic usability principles

Note: You have to describe about Heuristic usability principles in this part using your own words and in this part you can use the reference. I have upload a PDF file for your information which will be mostly enough to for this part or if you know..

  Generating test cases

identify at least two methods used to generate test cases in software development, and explain how they are used to identify and perform the path testing.

  How virtual memory relies on locality of reference principle

TLB entries are different than page table entries. Describehow they differ and why they differ. Virtual memory relies on a locality of reference principle. Describe.

  What can an isp do to limit the distribution of hate e-mail

What can an ISP do to limit the distribution of hate e-mail? Why would such actions not be considered a violation of the subscriber's First Amendment rights?

  Possible for the standard deviation of the anticipated

Explain how it could be possible for the standard deviation of the anticipated Halloween expense to be larger than the mean anticipated expense.

  Computer and internet security policy for organization

Your job is to develop a very brief computer and internet security policy for the organization. Computer and email acceptable use policy,

  Write description of the types of threats

Write a description of the types of threats that could be launched, or have been launched, against your organization.

  How many legal sequences of events are there

The pattern introduced in Exercise 17.2.2 can be extended to a transaction that writes new values for n database elements. How many legal sequences of events are there for such a transaction, if the undo-logging rules are obeyed?

  How can obtaining a doctorate impact your contribution

How can obtaining a doctorate impact your contribution to the practices of information technology? Where do you see yourself after obtaining a doctorate from UC

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd