Please enable JavaScript.
Coggle requires JavaScript to display documents.
L04 Understand how to manage cyber security incident (4.2 Cyber security…
L04 Understand how to manage cyber security incident
4.1 Responding to an incident
Know the extent of the incident: hardware, software data network and contain the incident
Eradicate and reduce the impact of the incident
Know responsibilities , know how to contact know procedures
Recover form the incident and confirm the system is functioning normally
Procedures:What are they? When? What order/Why are they important
4.2 Cyber security incident report
incident category
Significant
company terms: Reputation, loss of goods
Minor
inconvenient, loss of efficiency
Critical
not able to provide critical services, lives might be lost
negligible
minimal impact
Description of the incident
Target of the incident
Type of attacker
external
one person , a group or a government
internal
Title and date of the incident
Purpose of the incident
Techniques used
impact of the attack on:business data, recovery time.