Information Security Incident Response

MUST READ Incident response policies and procedures REPRINT - This chapter excerpt addresses the role of security policies in the formation of a CIRT. The Effective Incident Response Team: Chapter 2, What's Your Mission? BOOK CHAPTER - The following excerpt is from Chapter 2, What's Your Mission? of The Effective Incident Response Team by Julie Lucas and Brian Moeller.

NEWS: 1 - 3 of 32

	IT security pros face challenge during economic crisis SearchSecurity.com | 13 Oct 2008 INTERVIEW - In this Q&A, Steven Katz, a former CISO at Citigroup Inc., JP Morgan Chase & Co., and Merrill Lynch & Co., Inc., explains the role of IT security durring mergers and acquisitions.

	Sound compliance policies, practices reduce legal costs SearchSecurity.com | 08 Sep 2008 ARTICLE - Results of a recent survey show that if large enterprises adhere to compliance best practices, they can significantly trim what they spend on legal fees.

	Data breach costs soar SearchSecurity.com | 29 Nov 2007 ARTICLE - A Ponemon Institute study indicates the costs associated with data breaches have soared and will continue to skyrocket unless companies do more to prevent them in the first place.

	VIEW ALL NEWS ON INFORMATION SECURITY INCIDENT RESPONSE

EXPERT TECHNICAL ADVICE: 1 - 3 of 26

INFORMATION SECURITY INCIDENT RESPONSE EXPERTS
			Mike Rothman President and Principal Analyst ASK A QUESTION

	Recovering stolen laptops one step at a time 21 Oct 2008 TIP - When a student's laptop was stolen last year on a university campus, police and IT investigators went to work, recovering it within a matter of weeks.

	Will the new CERT security incident-response project benefit infosec pros? 16 Jul 2008 EXPERT ANSWER - Many security professionals lack a management-level understanding of incident response. Expert John Strand gives advice on how CERT security incident-response project can help.

	During a breach, how much information should be given out? 13 Oct 2008 EXPERT ANSWER - A security manager's nightmare: There's been a data breach, and it's time to pick up the pieces. But to recover as quickly as possible, who needs to know what about the data breach, and when? Security management expert Mike ...

	VIEW ALL EXPERT TECHNICAL ADVICE ON INFORMATION SECURITY INCIDENT RESPONSE

REFERENCE & LEARNING: 1 - 3 of 8

	Spotlight article: Domain 9, Physical Security SearchSecurity.com | 12 Sep 2008 SECURITY SCHOOL - Get a detailed introduction to the CISSP exam's Domain 9, Physical Security, as explained in the CISSP Common Body of Knowledge.

	Incident response process brings ROI and peace of mind ISACA | 28 Jul 2005 REPRINT - In this excerpt of Chapter 2 from ISACA's Cybercrime: Incident Response and Digital Forensics, author Robert Schperberg looks at the benefits of instituting an incident response process.

	Crash course: Vulnerability management 20 Jan 2005 FEATURED TOPIC - Is vulnerability management a measurable and proactive process in your organization? Attend our on-demand webcast, and learn new tactics for managing the vulnerability lifecycle.

	VIEW ALL REFERENCE & LEARNING ON INFORMATION SECURITY INCIDENT RESPONSE

MAGAZINE CONTENT (free subscription required): 1 - 3 of 3

	Product review: Mandiant Intelligent Response 1.0 Information Security Magazine | 01 May 2008 HOT PICK & PRODUCT REVIEWS - INCIDENT RESPONSE

	Security Survivor All-Stars Information Security Magazine | 01 Apr 2006 FEATURES - COVER STORY Five security survivors tell you how to outwit, outplay and outlast the bad guys.

	On The Radar Information Security Magazine | 30 Mar 2005 COLUMNS - It Pays to Plan

	VIEW ALL MAGAZINE CONTENT ON INFORMATION SECURITY INCIDENT RESPONSE

WEBCASTS: 1 - 3 of 4

Hacking the Hallways: The Convergence of Physical and Logical Security - Vendor Webcast VIEW WEBCAST PREMIERED:   25 OCT 2006, 14:00 EDT (18:00, GMT) SUMMARY:   This webcast addresses how converged physical and logical security works, the benefits it provides and what it will mean for your organization. Attend this webcast today and learn how physical and logical security creates opportunities for your company to: • Strengthen and gain greater control over total security • Better enforce both physical and logical security policies • Achieve compliance with multiple regulations

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 7, Business Continuity - Expert Webcast VIEW WEBCAST PREMIERED:   12 JAN 2005, 09:00 EST (14:00, GMT) SUMMARY:   One of the fundamental objectives of security is availability. This class focuses on the critical aspects of availability: business continuity planning and disaster recovery.

	Preventing Mass Worm Attacks from Impacting Business Continuity - Vendor Webcast VIEW WEBCAST PREMIERED:   19 JAN 2005, 14:00 EST (19:00, GMT) SUMMARY:   Learn firsthand how Determina is helping this global, Fortune 500-size company stop mass worm attacks and protect their most valuable asset -- business continuity!

	VIEW ALL WEBCASTS ON INFORMATION SECURITY INCIDENT RESPONSE

WHITE PAPERS

	Business Continuity for E-mail - You Don't Know What You've Got Till it's Gone Published by: Azaleos Corporation | 12 Nov 2008 WHITE PAPER - Azaleos RestoreXchange service gives you a complete business continuity e-mail system and it is always on standby and ready to take over at your command.

	Offer Your Clients the Ironclad Business Continuity Solution Published by: Zenith Infotech | 12 Nov 2008 DATA SHEET - Zenith Infotech's business continuity solution restores files, file folders, emails, or email stores in less than five minutes and, using advanced virtualization tools, activates as a standby server in less than 30 minutes.

	Oracle ONE - News for Midsize Businesses - Autumn 2008 Published by: Oracle Corporation | 06 Nov 2008 WHITE PAPER - Read this issue to learn how to ensure that your information systems are secure and stable enough to protect all your information assets. Find out more about how Oracle can help ensure your business continuity.

	VIEW ALL WHITE PAPERS IN THIS TOPIC

DEFINITIONS: 1 - 2 of 2

	disaster recovery plan 12 May 2003 WORD - A disaster recovery plan (DRP) - sometimes referred to as a business continuity plan (BCP) or business process contingency plan (BPCP) - describes how an organization is to deal with potential disasters. Just as a disaster is ...

	incident response 31 Aug 2005 WORD - Incident response is an organized approach to addressing and managing the aftermath of a security breach or attack (also known as an incident). The goal is to handle the situation in a way that limits damage and reduces ...

	VIEW ALL DEFINITIONS ON INFORMATION SECURITY INCIDENT RESPONSE

	SEE ALSO - Topics Related to Information Security Incident Response:  Business Impact Analysis