We use cookies to give you the best experience possible. By continuing we’ll assume you’re on board with our cookie policy

Quiz Questions

essay
The whole doc is available only for registered users

A limited time offer! Get a custom sample essay written according to your requirements urgent 3h delivery guaranteed

Order Now

1. What is the purpose of a CIRT plan? Describe what this plan does and what other plan it ties into. The purpose of the CIRT plan is to identify which group is responsible for what. It also provides information for the DRP. 2. Describe what the three models are for a CIRT plan based on the NIST SP 800-61 template. Critical incident response team, Distributed incident response teams, and the Coordinating team 3. Define three of the responsibilities that an Incident Response Team would have. List them and describe the responsibilities.

Develop Responsibilities generic procedures to respondto an incedent, determine cuase of incident determine best response to an incident, and protect collected evidence, to ensure that there is noo tampering of evidence. 4. As much as 80% of all incidents are a result of internal attacks. List four inappropriate usages from users. File sharing P2P, access web sites that are prohibited, purposely do things not supposed to according to the AUP, and spam coworkers. 5. List and explain three basic protection steps you can take to ensure all servers are hardened, thus reducing incidents. You can enable firewalls to block ports, have up to date AV software, reduce the attack surface disabling services not used/. 6. Define a DRP and explain when it is invoked.

A DRP according to the book is a plan of what to do when something happens. It is invoked after a incident. 7. Describe two CSFs for a DRP. Two CSFs for a DRP are management support, a disaster recovery budget. 8. Explain what Recovery Time Objective (RTO) is and why the DRP needs to be written to meet it. A RTO is the time needed to recover a system, so the MAO can be accurate. 9. Describe the advantages and disadvantages for each of the DRP location possibilities. A Cold site is cheap, a warm site is not to expensive to maintain, and a hot siteis the easiest to test. 10. List and describe four of the costs associated with a DRP. Equipment, how much to spend on other equipment, training what to do when stuff happens, CBFs what systems are crucial, and RTOs what type of media is safe.

Reference

Gibson, D. (2011). Managing Risk in Information Systems. Sudbury,MA: Jones & Bartlett Learning.

Related Topics

We can write a custom essay

According to Your Specific Requirements

Order an essay
icon
300+
Materials Daily
icon
100,000+ Subjects
2000+ Topics
icon
Free Plagiarism
Checker
icon
All Materials
are Cataloged Well

Sorry, but copying text is forbidden on this website. If you need this or any other sample, we can send it to you via email.

By clicking "SEND", you agree to our terms of service and privacy policy. We'll occasionally send you account related and promo emails.
Sorry, but only registered users have full access

How about getting this access
immediately?

Your Answer Is Very Helpful For Us
Thank You A Lot!

logo

Emma Taylor

online

Hi there!
Would you like to get such a paper?
How about getting a customized one?

Can't find What you were Looking for?

Get access to our huge, continuously updated knowledge base

The next update will be in:
14 : 59 : 59