Kibata

Sign In

Our Services

Get 15% Discount on your First Order

Order Now
[rank_math_breadcrumb]

LAB

see attached

2

Creating an Incident Response Policy

Regardless of whether an organization’s policies are perfect, the staff is superior, or the walls are impenetrable, a time will come when an incident occurs. Whether it is a security breach, or an employee is exploited by social engineering, an incident will take place and the organization had better be prepared for it.

In this lab, you will define the purpose of an incident response team (IRT) and identify major elements of an incident response methodology. You will also identify critical management, human resources, legal, information technology (IT), and information systems security personnel required for the incident response team. You will create an incident response policy that defines the incident response team’s purpose and goal and the authority granted during an incident. This is a Theory Lab and does not require the use of a virtual environment.

This lab has two parts, which should be completed in the order specified.

1. In the first part of the lab, you will conduct research on incident response.

2. In the second part of the lab, you will design your own incident response policy.

Part 1: Research Incident Response Plans

1. Using your favorite search engine, search for a sample incident response plan.

2. Review the plan.

3. Describe the key components within the incident response plan you identified. Be sure to cite the plan by including a link.

4. In your browser, navigate to A Six-Stage Methodology for Incident Response.

5. Review the six steps listed on the website.

6. Outline the six-step methodology for performing incident response. List each step and its purpose. How closely does the plan that you reviewed follow this methodology?

Part 2: Create an Incident Response Policy

1. Navigate to the Security Policy Templates webpage, then locate and review the Security Response Plan Policy.

2. Describe how this policy would be associated with an incident response plan.

3. Review the following characteristics of the fictional Bankwise Credit Union:

4. The organization is a local credit union that has several branches and locations throughout the region.

a. Online banking and use of the internet are the bank’s strengths, given its limited human resources.

b. The customer service department is the organization’s most critical business function.

c. The organization wants to be in compliance with the Gramm-Leach-Bliley Act (GLBA) and information technology (IT) security best practices regarding its employees.

d. The organization wants to monitor and control use of the internet by implementing content filtering.

e. The organization wants to eliminate personal use of organization-owned IT assets and systems.

f. The organization wants to monitor and control use of the email system by implementing email security controls.

g. The organization wants to implement this policy for all the IT assets it owns and to incorporate this policy review into its annual security awareness training.

h. The organization wants to create an incident response team to deal with security breaches and other incidents if attacked and provide full authority for the team to perform whatever activities are needed to maintain chain of custody in performing forensics and evidence collection.

i. The organization wants to implement this policy throughout the organization to provide full authority during a crisis to the incident response team over all physical facilities, IT assets, IT systems, applications, and data owned by the organization. Create an incident response policy that grants team members full access and authority to perform forensics and maintain a chain of custody for physical evidence containment.

5. Create this policy for the Bankwise Credit Union. The policy should include the following elements.

a. Policy Statement

b. Purpose/Objectives

c. Scope

d. Standards

e. Procedures

f. Guidelines

When you have completed the lab, click the “Download Lab Report as PDF” icon,

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Order Now

Related Questions

III

see attached. You are an IT consultant hired by ABC Tech Solutions, a small but growing technology firm specializing in software development. The firm has recently expanded its operations and is looking to ensure its IT infrastructure is secure and compliant with industry standards. As part of your engagement, you

How does an online port scanner check for open ports?

 I want to understand how an online port scanner works. How can it detect whether specific ports on my IP address are open or closed? Are there any tools that show both open ports and my public IP address in one place? 

CASE 3 – 80

I need your help please Module 3 – Case Creating Value Assignment Overview The Case Assignment for this module is about understanding the development of IT strategies that support and are supported by business strategy in a global economy. Given the large amount of investment in IT, companies need to

SLP 3 – 80

Please help me Module 3 – SLP Creating Value Read or listen to these resources on Dr. Michael Porter’s competitive strategies.  Porter, M. E. and Mauborgne, K. R., HBR’s 10 must reads on strategy. Ascent Hu. Audio book. Go to Library Access. In Additional Library Resources, select Skillsoft Books. In

Make, Buy, or Modify

  As a project manager, you may be given the choice to either a) build your system from scratch; b) buy an existing system; or c) buy an existing system and modify it. With regards to each option, explain the make or buy decision you would take. Justify your response.

Cloud

See attached Case Analysis #1 – Cloud Computing Choose a case study or story of a cloud sourcing event or project in an organization. Find an article online.. Then do a brief analysis of the project or services being sourced in the cloud.  Focus on the type of cloud service SaaS,

II

see attached. • Your initial post should be at least 200 words in length. Imagine that you have been promoted to the position of an IT manager in a mid-sized firm, SecureFunds Inc, which specializes in financial services and has recently undergone significant growth and adapted to the new conditions

Managing Risks

 Identify and discuss the common sources of risk for IT software development projects. What will be your plan to manage them? Justify your response. 

Communications

  Explain why you agree or disagree with some of the suggestions covered this week for improving project communications, such as creating a communications management plan, stakeholder analysis, or performance reports for IT software development projects. Justify your response. What other suggestions do you have?

Case 2 – 80

I need help  Module 2 – Case Information Technology Planning Assignment Overview Strategic planning is a process exercise where it is important to gather whatever strategic collateral the rest of the company has generated to understand what the CEO and board hope to do in the future through the enterprise-level

SLP 2 – 80

Please help me with my assignment Module 2 – SLP Information Technology Planning Xerox is a firm that has dominated the copier business. As the market for copiers continues to shrink, how will Xerox survive? Research the current business environment for Xerox by using Fortune.com and Forbes.com, etc. In your

PowerPoint

 The Baypoint Group (TBG) needs your help with a presentation for Academic Computing Services (ACS), a nationwide organization that assists colleges and universities with technology issues. ACS needs more information about the differences between the IEEE 802.11a and IEEE 802.11g standards so that their salespeople will be better equipped to

Journal VIII

see attached. 2 Identify a task that you would need to perform in your current career or future career, and explain in detail how you would apply the knowledge you have learned in this course to succeed at performing the task in a real-world scenario. Your submission should be in

SLP 1 – 80

I need help on my assignment  Module 1 – SLP Strategy and Strategic Planning Review this  comprehensive review of strategic planning . The website is the brain-child of Dr. Ross A. Wirth, who has extensive experience in management consulting. However, the website is about general strategic planning, rather than IT

Case 1 – 80

I need help please.  Module 1 – Case Strategy and Strategic Planning Assignment Overview The Case for this module starts us off by looking at why IT strategy matters.  Please view the following video: Please note that this link will open in a new window and may require activation of

Improving Quality

  You are committed to improving the quality of developing software applications. Identify and discuss three recommendations for improving quality in IT software development projects. Justify your response.

Macfee subscription

  [1-888-226-6629] How Do i Cancel M C A F e e Subscription & Get a R E F U N D  To cancel your M C A F E E subscription and request a refund, call [1-888-226-6629]. A support agent will help verify your account, [1-888-226-6629] process the cancellation,

How do i cancel McAfee subscription and get a refund?

 To cancel your McAfee subscription 1-888-226-6629 and request a refund, log in to your account at mcafee.com, go to My Account > Subscriptions, select your active plan, and turn off auto-renewal. To request a refund, visit the Support section or call 1-888-226-6629. McAfee’s customer support 1-888-226-6629 is available 24/7 to