All pages tagged with response
Introduction to the NSA Infosec Assessment Methodology (IAM)
On May 22, 1998 President Clinton signed Presidential Decision Directive 63 (PPD 63). This directive outlined the civilian and governmental responsibility of protecting the US Critical Infrastructure and established the ...
Written by: Mitchell Rowton and added on April 2, 2011Government Financial Architecture A Focus on Centralized Security and Continuity of Operations
To reverse trends of weak security in government technology systems, Congress now requires Federal agencies to better manage internal IT security. Financial operations are of specific interest, and this effort ...
Written by: Matthew Mickelson and added on May 4, 2011Is your risk management plan as good as it gets?
Not all security incidents can be prevented, nor is it cost-effective to try. Each control should be evaluated on its own merits prior to implementation. Issues to consider: direct costs, ...
Written by: Shawna McAlearney and added on Feb. 15, 2011Community Policing on the Internet
Community policing has been applied to the physical world with good success. These programs establish a community partnership that attempts to solve the problems that lead to crime, and work ...
Document added on March 5, 2011Building an Incident Response Program To Suit Your Business
The purpose of this paper is to outline the key concepts of an Incident Response Program (IRP). Although every organization is unique, there are basics components that should be included ...
Document added on Feb. 10, 2011Computer Forensic Legal Standards and Equipment
This paper addresses an issue of increasing importance to companies in this modern era. Computer Incident Response Teams (CIRTs), network security, and intellectual property (IP) security are growing
Document added on Jan. 9, 2011Computer Incident Response Team
No company's security policy should be considered complete until procedures are put into place that allow for the handling and recovery from even the most devastating of incidents. One possible ...
Written by: Michelle Borodkin and added on Feb. 4, 2011How ISO/IEC 17799 works in practice
ISO/IEC 17799:2000 defines 127 security controls structured under 10 major headings to enable readers to identify the particular safeguards that are appropriate to their particular business or specific area of ...
Document added on May 13, 2011Implementing a Computer Incident Response Team in a Smaller, Limited Resource Organizational Setting
Smaller scale organizations or those with limited resources have a tendency to think that a Computer Incident Response Team is not necessary or that it is not feasible given their ...
Document added on Feb. 26, 2011Incident Response and Creating the CSIRT in Corporate America
The purpose of this document is to discuss why these challenges may exist and suggest a way to successfully implement a formal incident response organization. However, the needs of each ...
Document added on Feb. 24, 2011