Our Services

Get 15% Discount on your First Order

[rank_math_breadcrumb]

LAB

see attached

2

Creating an Incident Response Policy

Regardless of whether an organization’s policies are perfect, the staff is superior, or the walls are impenetrable, a time will come when an incident occurs. Whether it is a security breach, or an employee is exploited by social engineering, an incident will take place and the organization had better be prepared for it.

In this lab, you will define the purpose of an incident response team (IRT) and identify major elements of an incident response methodology. You will also identify critical management, human resources, legal, information technology (IT), and information systems security personnel required for the incident response team. You will create an incident response policy that defines the incident response team’s purpose and goal and the authority granted during an incident. This is a Theory Lab and does not require the use of a virtual environment.

This lab has two parts, which should be completed in the order specified.

1. In the first part of the lab, you will conduct research on incident response.

2. In the second part of the lab, you will design your own incident response policy.

Part 1: Research Incident Response Plans

1. Using your favorite search engine, search for a sample incident response plan.

2. Review the plan.

3. Describe the key components within the incident response plan you identified. Be sure to cite the plan by including a link.

4. In your browser, navigate to A Six-Stage Methodology for Incident Response.

5. Review the six steps listed on the website.

6. Outline the six-step methodology for performing incident response. List each step and its purpose. How closely does the plan that you reviewed follow this methodology?

Part 2: Create an Incident Response Policy

1. Navigate to the Security Policy Templates webpage, then locate and review the Security Response Plan Policy.

2. Describe how this policy would be associated with an incident response plan.

3. Review the following characteristics of the fictional Bankwise Credit Union:

4. The organization is a local credit union that has several branches and locations throughout the region.

a. Online banking and use of the internet are the bank’s strengths, given its limited human resources.

b. The customer service department is the organization’s most critical business function.

c. The organization wants to be in compliance with the Gramm-Leach-Bliley Act (GLBA) and information technology (IT) security best practices regarding its employees.

d. The organization wants to monitor and control use of the internet by implementing content filtering.

e. The organization wants to eliminate personal use of organization-owned IT assets and systems.

f. The organization wants to monitor and control use of the email system by implementing email security controls.

g. The organization wants to implement this policy for all the IT assets it owns and to incorporate this policy review into its annual security awareness training.

h. The organization wants to create an incident response team to deal with security breaches and other incidents if attacked and provide full authority for the team to perform whatever activities are needed to maintain chain of custody in performing forensics and evidence collection.

i. The organization wants to implement this policy throughout the organization to provide full authority during a crisis to the incident response team over all physical facilities, IT assets, IT systems, applications, and data owned by the organization. Create an incident response policy that grants team members full access and authority to perform forensics and maintain a chain of custody for physical evidence containment.

5. Create this policy for the Bankwise Credit Union. The policy should include the following elements.

a. Policy Statement

b. Purpose/Objectives

c. Scope

d. Standards

e. Procedures

f. Guidelines

When you have completed the lab, click the “Download Lab Report as PDF” icon,

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Related Questions

public finance

Module 1 Assignment Details · Due Sunday by 11:59pm   Weekly Objectives Students will: · Define public administration and why it is important. · Define and explain key terminology related to public budgeting and finance administration.  · Differentiate between the four stages of public budgeting (preparation, approval, execution, and audit/evaluation) and describe their

VII

see attached. CybersecurityPolicies Without Borders This assignment measures your mastery of ULOs 2.1, 2.2, 2.3, 5.3, and 6.2. Unlike countries, the Internet is not confined to specific national borders or geopolitical boundaries defying traditional governance. Perform research in the CSU Online Library and the Internet, and answer the following questions:

Information Systems VI Aassignment

see attached. Course Textbook(s) Lewis, T. G. (2020). Critical infrastructure protection in homeland security: Defending a networked nation (3rd ed.). Wiley.

power point

Video Presentation As a synthesis of the prior five weeks, each student will create an informational video presentation. The video presentation must be a Senior Executive Level presentation to a real world company/organization. If students are unfamiliar with that style of presentation, they are to research it.  Application of Learning:

V

see attached During the Bush and Obama administrations and because of 9/11, the Department of Homeland Security (DHS) assumed lead responsibilities for many of the CIKR sectors assigning Sector-Specific Agencies (SSAs) to establish sector-specific protocols for protection. However, most of these sectors have the DHS as its SSA. Under this

IV Journal

see attached. Should the private sector be proactively involved in all phases of preparedness for attack avoidance (either physical or cyber-based) or should the private sector act solely as a resource when called upon by the public/government sector? Why, or why not? Your journal entry must be at least 200

SA

see attached  Begin by researching and identifying a critical infrastructure sector or component (there are 18 of them to choose from) such as power, finance and banking, or municipal services. Perform an analysis of the selected component, identifying its vulnerabilities. After conducting your research, either in the CSU Online Library

Course Closure

  Congratulations on reaching the end of this course! This week: Discuss the salient manner in which you would apply the learning outcomes of this course to your professional and/or personal life. Talk about the topics you found most valuable or useful, either personally or professionally.

Relational Set Operators

  A relational database model allows database users to analyze data thoroughly. To accomplish this, advanced commands such as “union” and “intersect” may be used. Describe a business scenario where a “union” relational set operator may be used to merge two similar data sets. Analyze the analysis and data consistency

Concurrency Control

  There are times when a database is accessed by many users across the enterprise. Transaction logs can help maintain concurrency in a multiuser platform. Describe at least two business scenarios where “commit” and “rollback” would be required. Describe how these functions would be essential for business continuity and concurrency

Healthcare Industry Solutions: Transforming Patient Care and Operational Efficiency

Healthcare industry solutions refer to a wide range of technologies, tools, and strategies designed to improve the way healthcare organizations operate and deliver patient care. These solutions combine software, digital platforms, data analytics, medical devices, and process innovations to address challenges in hospitals, clinics, pharmaceutical companies, insurance providers, and the

Comprehensive SharePoint and Teams Migration Solutions

   Modern businesses depend on collaboration and document platforms to stay productive, and moving these systems during a tenant migration is often complex. CloudBik’s Teams to Teams Migration offers an effective way to transfer Teams environments, including chats, channels, and files, without impacting end-users. At the same time, the SharePoint

Why Businesses Need Tenant to Tenant Migration

   The need for Tenant to Tenant Migration is growing as many companies go through mergers, acquisitions, or restructuring. Having data in two separate tenants can create confusion and extra work for IT teams. Moving everything into one tenant gives users a simple and unified experience. The OneDrive Migration Tool

Easy Data Transfer from Google to Office 365

  Many businesses choose Microsoft 365 over Google Workspace because it connects better with apps like Excel, Teams, and Outlook. But during migration, the main worry is losing data or breaking folder structures. The migrate from Google Workspace to Office 365 blog explains how to transfer emails, calendars, and files safely

HIS-D40-C

I have a question about Health Information System, who can help with questions?

HIS-B39-C

My questions are about Health IS. Who can help with these questions?

Advanced SQL and PL/SQL

  Extracting and interpreting data can be very valuable to an organization. Describe the importance of using sub queries in a database system. Provide at least two business case scenarios to support your response.

creating

Create a Visual Origin Story In Module 1 you are to complete the team-building exercise ” Visual Origin Story: Adventures in collaborative storytelling .” This exercise is from the book:  Murdoch-Kitt, K. M., & Emans, D. J. (2020). Intercultural collaboration by design drawing from differences, distances, and disciplines through visual