User Account

All Pages

Evidence collection policy

Assignment Help Basic Computer Science
Reference no: EM133042304

Evidence Collection Policy

Scenario

After the recent security breach, Always Fresh decided to form a computer security incident response team (CSIRT). As a security administrator, you have been assigned the responsibility of developing a CSIRT policy that addresses incident evidence collection and handling. The goal is to ensure all evidence collected during investigations is valid and admissible in court.

Consider the following questions for collecting and handling evidence:

1. What are the main concerns when collecting evidence?

2. What precautions are necessary to preserve evidence state?

3. How do you ensure evidence remains in its initial state?

4. What information and procedures are necessary to ensure evidence is admissible in court?

Tasks

Create a policy that ensures all evidence is collected and handled in a secure and efficient manner. Remember, you are writing a policy, not procedures. Focus on the high-level tasks, not the individual steps.

Address the following in your policy:

- Description of information required for items of evidence

- Documentation required in addition to item details (personnel, description of circumstances, and so on)

- Description of measures required to preserve initial evidence integrity

- Description of measures required to preserve ongoing evidence integrity

- Controls necessary to maintain evidence integrity in storage

- Documentation required to demonstrate evidence integrity

Reference no: EM133042304

Questions Cloud

Crucial topic for maintaining your busines : The lessons on incident response and mitigation may be the most crucial topic for maintaining your business.
Satellite communication solutions : Some businesses have no alternative but to use satellite communication solutions.
Example visualization or infographic : Select any example visualization or infographic and imagine the contextual factors have changed:
Windows Hardening Recommendations : Previous attempts to protect user accounts have resulted in users writing long passwords down and placing them near their workstations.
Evidence collection policy : What are the main concerns when collecting evidence? What precautions are necessary to preserve evidence state?
Executive program practical connection : At University of the Cumberlands, it is a priority that students are provided with strong educational programs
Internship Reflection : What did you learn from these experiences? You may add topics such as what you learned at your college that helped you through your task or issues.
Examined several areas of governance : We examined several areas of governance and ways in which governance models are applied and regulated by governments and industry.
Systems development : Discuss and select appropriate systems development process models to address a range of typical systems development problems.

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Contrast needs-based theories of motivation

Compare and contrast needs-based theories of motivation. Which offers the most value to healthcare managers? Discuss the role of thinking processes in organizational communication and problem solving. In what ways could you, as a manager, use t..

  Discuss the various stages of data analytics lifecycle

Discuss the various stages of Data Analytics Lifecycle. Which of the stages is more important to you and why?

  Short notes on client-server networking

Provide accurate and precise answers to the questions 1. Explain the different modes in which a file can be opened. 2. Explain the following functions in a c program fscanf(), fprintf(), fgets(), fputs(), fread(), fwrite(), feof()

  Show how this instruction would be written using rtn

Basically, we are incrementing the operand, and if this new value is equal to 0, we skip the next instruction. Show how this instruction would be written using RTN.

  Work on an mne multinational enterprise

Please work on an MNE (Multinational Enterprise) from an advanced market (such as Australia, France, Germany, Japan, South Korea, UK, USA etc.) and study how it entered a specific foreign emerging or developing market (such as Brazil, Russia, India,..

  What is the length of each side of that pentagon

A circle of radius 6 cm is included in a regular pentagon. What is the length of each side of that pentagon?

  Which two departments should be converted to wireless first

What precautions should the school take to help recover the computers in the event they are lost or stolen?

  Cyber criminals steal millions of dollars with near impunity

Internet-related crime occurs every minute. Cyber criminals steal millions of dollars with near impunity.

  Describe various types of virtualization

Describe the various types of virtualization. List the pros and cons of virtualization.

  Write an expression that returns a random value

Write an expression that returns a random value between 1 and 100. The values 1 and 100 must be included in the values that can be returned.

  How active directory implements pki

Explain how Active Directory implements PKI. Be sure to detail the use of certificates, the use of keys, and key security. Provide the example.

  Draw a circle with that center and radius in a component

Write a program that prompts the user to enter the x- and y-positions of the center and a radius, using JOptionPane dialogs.When the user clicks a "Draw" button, draw a circle with that center and radius in a component.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd