Reference no: EM131339444
Even with the best security system, an organization's information systems are never fully safe from outside attacks or malicious activities from insiders. As a result, an organization must be prepared to take curative measures when an incident occurs. As a security professional, you should have knowledge and expertise in incident response and should be able to explain the necessity of incident response systems to the higher management.
For this Assignment, select an arbitrary organization. You may choose one with which you are familiar, but you do not need to disclose its identity. Assume you are the IT security manager. You frequently find traffic to and from suspicious websites which could indicate malware, a configuration problem, or misuse. You think that, as a starting point, having an incident response plan in place would be beneficial. You decide to submit a proposal to your CEO.
Based on your readings and through additional research write a 4- to 6-page proposal to the CEO. Use this as an outline for your proposal:
Begin your proposal by briefly describing the organization and its nature of functions. Again, if it is one with which you are familiar, you do not need to identify it.
Your proposal should include the following sections:
- Incident Response Plan Details:
- Explain the benefits of an incident response plan.
- Identify and explain with reasonable details the steps to isolate, respond, and recover after an attack (incident) is discovered.
- Identify the teams that should be involved in the incident response process. Explain their roles.
- Incident Communication Requirements:
- Identify and explain the type of communication and reporting to different internal stakeholders that will be necessary after you have discovered an attack.
- What are the legal, ethical, and other considerations if personal customer data has been stolen?
- Considering the breach laws in your home country, at which point would you disclose such a breach to law enforcement and communicate with customers?
|
New trends of mobile computing
: Information technology professionals face many ethical obligations, conflicts, and dilemmas. Discuss ethical issues an IT professional might face. Consider the new trends of Mobile Computing, Social Media, and the Cloud.
|
|
Was this a true experiment or quasi experiment
: Parents from MADD (Mothers against Drunk Driving) were recruited to take part in a study, along with parents who were not members of the organization. Was this a true experiment or quasi experiment
|
|
Learning objectives and outcomes
: You will review the Fourth Amendment and will be able to analyze the specific exceptions to the application of this right.
|
|
Identify the relative advantages of the synchronous bus
: Prove that the maximum speed-up of a multiprocessor system having n processors, in which each processor uses the bus for the fraction m of every cycle, is given by m.
|
|
Explain the benefits of an incident response plan
: Explain the benefits of an incident response plan. Identify and explain with reasonable details the steps to isolate, respond, and recover after an attack (incident) is discovered.
|
|
Post a description of the legal or ethical standard
: Post a description of the legal or ethical standard you selected. Then, explain one way the standard you selected might affect working with groups within your specialization (e.g., Clinical Mental Health Counseling, Addictions Counseling)
|
|
Which would you choose for a new microprocessor
: Identify the relative advantages of the daisy chain grant arbitration scheme and the daisy chain request arbitration scheme. Which would you choose for a new microprocessor? Why?
|
|
What do you think is the main message that durrrnmatt want
: What do you think is the main message that Durrrnmatt wanted to convey with his novel The Pledge? How does the way the novel is weitten contribute to conveying this message?
|
|
Good quality clustering in terms of cohesiveness
: What do we aim for to have a good quality clustering in terms of Cohesiveness, and Distinctiveness?
|