Our Services

Get 15% Discount on your First Order

[rank_math_breadcrumb]

LAB

see attached

2

Creating an Incident Response Policy

Regardless of whether an organization’s policies are perfect, the staff is superior, or the walls are impenetrable, a time will come when an incident occurs. Whether it is a security breach, or an employee is exploited by social engineering, an incident will take place and the organization had better be prepared for it.

In this lab, you will define the purpose of an incident response team (IRT) and identify major elements of an incident response methodology. You will also identify critical management, human resources, legal, information technology (IT), and information systems security personnel required for the incident response team. You will create an incident response policy that defines the incident response team’s purpose and goal and the authority granted during an incident. This is a Theory Lab and does not require the use of a virtual environment.

This lab has two parts, which should be completed in the order specified.

1. In the first part of the lab, you will conduct research on incident response.

2. In the second part of the lab, you will design your own incident response policy.

Part 1: Research Incident Response Plans

1. Using your favorite search engine, search for a sample incident response plan.

2. Review the plan.

3. Describe the key components within the incident response plan you identified. Be sure to cite the plan by including a link.

4. In your browser, navigate to A Six-Stage Methodology for Incident Response.

5. Review the six steps listed on the website.

6. Outline the six-step methodology for performing incident response. List each step and its purpose. How closely does the plan that you reviewed follow this methodology?

Part 2: Create an Incident Response Policy

1. Navigate to the Security Policy Templates webpage, then locate and review the Security Response Plan Policy.

2. Describe how this policy would be associated with an incident response plan.

3. Review the following characteristics of the fictional Bankwise Credit Union:

4. The organization is a local credit union that has several branches and locations throughout the region.

a. Online banking and use of the internet are the bank’s strengths, given its limited human resources.

b. The customer service department is the organization’s most critical business function.

c. The organization wants to be in compliance with the Gramm-Leach-Bliley Act (GLBA) and information technology (IT) security best practices regarding its employees.

d. The organization wants to monitor and control use of the internet by implementing content filtering.

e. The organization wants to eliminate personal use of organization-owned IT assets and systems.

f. The organization wants to monitor and control use of the email system by implementing email security controls.

g. The organization wants to implement this policy for all the IT assets it owns and to incorporate this policy review into its annual security awareness training.

h. The organization wants to create an incident response team to deal with security breaches and other incidents if attacked and provide full authority for the team to perform whatever activities are needed to maintain chain of custody in performing forensics and evidence collection.

i. The organization wants to implement this policy throughout the organization to provide full authority during a crisis to the incident response team over all physical facilities, IT assets, IT systems, applications, and data owned by the organization. Create an incident response policy that grants team members full access and authority to perform forensics and maintain a chain of custody for physical evidence containment.

5. Create this policy for the Bankwise Credit Union. The policy should include the following elements.

a. Policy Statement

b. Purpose/Objectives

c. Scope

d. Standards

e. Procedures

f. Guidelines

When you have completed the lab, click the “Download Lab Report as PDF” icon,

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Related Questions

SLP 2 – 25

I need help with my homework assignment!  Module 2 – SLP IT Services and Cloud Computing If Cloud computing is the greatest thing for business since sliced bread, then by extension, it certainly ought to be the greatest thing for education since chalk. In point of fact, a relatively large

Case 2 – 25

Need help please Module 2 – Case IT Services and Cloud Computing Assignment Overview The Case Assignment for this module involves thinking systematically about the IT services movement in general and about cloud computing as a particular instance of that approach. You will start by reviewing a number of sources

SLP 1 – 25

Need help with my homework Module 1 – SLP Web 2.0 and Social Networks The purpose of the Session Long Project in Trident University classes is to give you the opportunity to explore the applicability of the module to your own life, work, and place in space and time, and

Case 1 – 25

I need help with my homework please.  Module 1 – Case Web 2.0 and Social Networks Assignment Overview In this Case Assignment, you are exploring the technological underpinnings of the Internet. The objective of this Case is to better understand the evolution of the Web from Web 1.0 and Web

SP DB

See attached. In your own words, please discuss a cybersecurity policy with which you are familiar. The example can come from work, school, or a business relationship. You can also research organizational policies posted online. Give a brief description of the policy. What is the purpose and value of the

Changes in existing interview question for Info I’m attaching th topic

Topic:   Enhancing Cybersecurity in IoT Networks: A Comprehensive Study on Threat Detection and Mitigation Strategies · Details about the research (Background, methodology, research questions) · ·  The rapid proliferation of IoT devices has opened up new avenues for cyber threats. Securing these devices has become increasingly complicated, as over 75 billion

Active directory automation

Need help to get an assignment done. Requirements are VMware, windows server core (not the full GUI). PowerShell Automation for Active Directory Submission Template Screenshot 1 Onboarding New Users from CSV Single screenshot showing: Script output (e.g. “Created user: jdoe”). Get-ADUser results for those SamAccountNames. Your custom prompt (server name

HIMS 11

  Assignment Instructions:  Using the Patient Healthcare Data in the attached Excel file (attached below), construct a 3-D Clustered Column Chart depicting the three healthcare parameters (weight, height, age), and title this chart ” Patient Healthcare Data” at the top center and show Legend at the bottom. After reviewing the

Governance, Ethics, and Security

 Assume the role of an IT security consultant who has been contacted by a company to provide them with a written code of IT conduct for its employees and a security policy for the firm. In preparation for undertaking this large job, prepare a proposal explaining what topics you will

Cloud-Based Management and Analytics

Final Project Topic: (5 pages research paper) Topic: Data Management and Analytics: Explore how enterprises use cloud-based data management and analytics tools to drive business decisions and gain competitive advantages. Competitive advantages through cloud analytics: Citation: Cooper, A. (2020). How Netflix Uses Big Data and Analytics to Drive Success. Forbes.

Powtoon commercial

see attached file Powtoon Commercial Project Do not pay for anything on this site! Learning animation can be very challenging yet very fun. Navigate to the Powtoon website, click Pricing in the top menu, scroll down, and click FREE Start Now $0 free. Create an account if you do not

HIMS W12D12

 What is Big Data in healthcare? How is it generated in a typical healthcare facility, like a hospital? What two common formats are used, and what are the advantages and disadvantages of each? How is this data used for unraveling hidden trends, strategic planning, and operational decision-making?  What are the

INFA W12D12

  In the discussion this week, you and your peers are asked to consider and discuss information security career pathways relevant to your personal goals and career plans. Where are you currently in your career? What is the next level up or sideways for you in your desired career field?

CASE 4 – 40

i need help please Module 4 – Case Database Systems and Knowledge Base Assignment Overview The Case Assignment for this module considers the emerging and important trend toward what is called “open-source software.” The Background Information contains material regarding this movement; its effect is being felt in many different areas

SLP 4 -40

I need help Module 4 – SLP Database Systems and Knowledge Base Go to  Kaggle.com  and register with any one of your email addresses. Kaggle is a open-source data repository often used in Data Analytics to practice with datasets. Go to this  Kaggle dataset  that has 9,514 movies on Netflix,

Information Systems Book Assignment

IS 373 Book Chapter Review Project Goal: CHAPTER 2 Each student will be assigned one chapter from the following eBook by the instructor. The student should study the chapter carefully and in depth and do extra research to ensure his/her dominance on all of the concepts in the chapter. The

Module 03 Course Project – Network Diagram, Procurement Plan and Communication Plan Module 03 Course Project – Network Diagram, Procurement Plan and Communication Plan

Module 03 Project Procurement Plan [Insert Name] Network Administration Capstone Table of Contents Introduction 1 Procurement Management Approach 2 Procurement Definition 2 Type of Contract to be Used 2 Procurement Risks 2 Procurement Risk Management 2 Cost Determination 2 Standardized Procurement Documentation 2 Procurement Constraints 2 Contract Approval Process 2

Module 03 Course Project – Network Diagram, Procurement Plan and Communication Plan Module 03 Course Project – Network Diagram, Procurement Plan and Communication Plan

Module 03 Project Procurement Plan [Insert Name] Network Administration Capstone Table of Contents Introduction 1 Procurement Management Approach 2 Procurement Definition 2 Type of Contract to be Used 2 Procurement Risks 2 Procurement Risk Management 2 Cost Determination 2 Standardized Procurement Documentation 2 Procurement Constraints 2 Contract Approval Process 2