Ask the Expert

How to assign responsibilities for a CSIRT

As part of our overall security posture, we're in the process of forming a computer security incident response team (CSIRT). Could you recommend some resources that could tell us what specific responsibilities and/or examples that the various job functions of the team have? (e.g., HR's role is...).

    Requires Free Membership to View

Anytime that anyone I know needs to develop a lot of various security roles and responsibilities such as these, I refer them to one source -- Information Security Roles and Responsibilities Made Easy by Charles Cresson Wood. It's not cheap, but I guarantee you it'll save you time, effort and money within the first day of using it. You won't have to worry about hiring a consultant to develop these roles and responsibilities or spend hours searching for them on the Internet. This book is the one resource to have. You can learn more about it at http://www.netiq.com/products/pub/israr.asp.
For more information on this topic, visit these other SearchSecurity.com resources:
Best Web Link: Security Management

This was first published in April 2003

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: