Please enable JavaScript.
Coggle requires JavaScript to display documents.
LO4- Understand how to manage cyber security incidents (4.2 Cyber security…
LO4- Understand how to manage cyber security incidents
4.1 Responding to an incident
Responsibilities: Who is involved? What are their responsibilities
Who to contact?
Procedures: What are they? Wen? What order? Why are they important?
Extent of the incident: Impact- hardware, software, data, network
Contain the incident
Eradicate the incident
Reduce the impact and recovery
4.2 Cyber security incident report
Incident title and date
Target of the incident
Incident category:
Critical: not able to provide critical services, lives may be in danger
Significant
Minor: Inconvenience, loss of efficiency
Description of the incident
Type of attacker:
Internal
External
Government
Purpose of the incident
Techniques used by attacker
Capability of attacker: how effective the attacker was
Impact of the attacker on: business, data, recovery time