Please enable JavaScript.
Coggle requires JavaScript to display documents.
Incident Response and handling (Preparation (Policies (Types of Security…
Incident Response and handling
Incident Response process
Preparation
Policies
key elements
Defined Scope
Enforced by law
Clear Communication
Areas of Responsibility
Appropriate Direction
Management Involvement
Goals
availability and integritiy
availability
Systems are safe
Characteristics and Implementation
Guidelines based on company needs
Security tools
Defining clear scope
Documentation
Types of Security Policies
Audit trail policy
E.g Accountability
Logging Policy
E.g What to logged?
Asset Control Policy
E.g Asset monitoring
Documentation Policy
E.g Operation and Resources documentation.
Administrative security policy
Security and Protection
Responsibility
Controlled
Information Security backup
Data handling policy
Evidence Collection Policy
What needs to be collected?
Steps and method in collecting the evidence?
Steps in maintaining the chain of custody
Acceptable use policy
E.g : Access to a particular data
Evidence Preservation Policy
How do we itemize the evidence?
How to preserve the evidence
Access Control Policy
Information security Policy
Protecting company reputation
NIACAP / IA and C&A Polices
accredittation
National Process for security requirements
Physical security policies