Information Security Incident Response

MUST READ Incident response policies and procedures REPRINT - This chapter excerpt addresses the role of security policies in the formation of a CIRT. The Effective Incident Response Team: Chapter 2, What's Your Mission? BOOK CHAPTER - The following excerpt is from Chapter 2, What's Your Mission? of The Effective Incident Response Team by Julie Lucas and Brian Moeller.

VIDEO: 1 - 3 of 3

	Incident response planning SearchSecurity.com | 22 Jun 2009 VIDEO - Jack Phillips, managing partner of security research firm, IANS, talks about how companies can prepare to appropriately handle a security incident.

	Security incident response 101 SearchSecurity.com | 19 Mar 2009 VIDEO - Even the best procedures fail to overcome the stresses in the initial throes of an incident. Security consultant Lenny Zeltser explains how to run a well coordinated response.

	The challenges of incident response plans and procedures SearchSecurity.com | 21 Jan 2009 VIDEO - Mandiant's Kevin Mandia reviews his top five incident response challenges.

	VIEW ALL VIDEO ON INFORMATION SECURITY INCIDENT RESPONSE

NEWS: 1 - 3 of 40

	Senators hear call for federal cybersecurity restructuring SearchSecurity.com | 28 Apr 2009 ARTICLE - Congress is mulling over whether to give more authority on cybersecurity issues to the Department of Homeland Security or create a new office within the White House.

	Firms muddle security breach response, expert says SearchSecurity.com | 18 Mar 2009 ARTICLE - Security incident handlers are at the core of the coordination problems during security incidents, says security expert and consultant Lenny Zeltser.

	Microsoft Conficker worm offers attack prevention lesson SearchSecurity.com | 02.24.2009 OPINION - Though a payload hasn't been issued, the Conficker worm reminds security professionals to be actively protecting the network from attacks.

	VIEW ALL NEWS ON INFORMATION SECURITY INCIDENT RESPONSE

EXPERT TECHNICAL ADVICE: 1 - 3 of 35

INFORMATION SECURITY INCIDENT RESPONSE EXPERTS
			David Mortman, featured expert ASK A QUESTION

	How to create a bit-image copy of a live server Submitted By: SearchMidmarketSecurity.com | 24 Sep 2009 TIP - Part of your incident response plan should include the creation of a bit image copy of a live server. Free and open source tools are available to simplify this process.

	Data breach notification legislation: What info must be released? 25 Aug 2009 EXPERT ANSWER - In the wake of a credit card data breach, what customer data breach information must be released per data breach notification legislation? David Mortman addresses the question in this expert response.

	Security book chapter: Applied Security Visualization Submitted By: SearchSecurity.com | Addison-Wesley | 28 Jan 2009 TIP - In this section of Chapter 5: Visual Security Analysis (.pdf), author Raffael Marty discovers the forensic analysis of log data for discovering attacks and reporting incidents.

	VIEW ALL EXPERT TECHNICAL ADVICE ON INFORMATION SECURITY INCIDENT RESPONSE

REFERENCE & LEARNING: 1 - 3 of 10

	Spotlight article: Domain 9, Physical Security SearchSecurity.com | 12 Sep 2008 SECURITY SCHOOL - Get a detailed introduction to the CISSP exam's Domain 9, Physical Security, as explained in the CISSP Common Body of Knowledge.

	Business continuity planning standards and guidelines Digital Press, a division of Elsevier | 16 Aug 2006 BOOK CHAPTER - An excerpt from Chapter 1: Contingency and Continuity Planning of "Business Continuity and Disaster Recovery for InfoSec Managers," by John W. Rittinghouse and James F. Ransome.

	Privacy Breach Impact Calculator Information Shield | 03 May 2006 PRIVACY BREACH IMPACT CALCULATOR - Use this calculator to find out what your organization should consider when estimating the potential business impacts of a data privacy breach.

	VIEW ALL REFERENCE & LEARNING ON INFORMATION SECURITY INCIDENT RESPONSE

MAGAZINE CONTENT (free subscription required): 1 - 3 of 10

	New partnerships, creative thinking help security bust recession Information Security Magazine | 04 Jun 2009 COLUMNS - The economy is forcing organizations to be more resourceful and bury the hatchet. And that's a good thing.

	Mature SIMs do more than log aggregation and correlation Information Security Magazine | 04 Jun 2009 FEATURES - They've come a long way from the early days of log aggregation and correlation; enterprises now glean value from SIMs for compliance, visualization and business intelligence.

	Tabletop exercises sharpen security and business continuity Information Security Magazine | 02 Apr 2009 FEATURES - Learn how simulated cyberattacks and incident response exercises help organizations prevent future attacks and maintain business continuity.

	VIEW ALL MAGAZINE CONTENT ON INFORMATION SECURITY INCIDENT RESPONSE

WEBCASTS: 1 - 3 of 4

Hacking the Hallways: The Convergence of Physical and Logical Security - Vendor Webcast VIEW WEBCAST PREMIERED:   25 OCT 2006, 14:00 EDT (18:00, GMT) SUMMARY:   This webcast addresses how converged physical and logical security works, the benefits it provides and what it will mean for your organization. Attend this webcast today and learn how physical and logical security creates opportunities for your company to: • Strengthen and gain greater control over total security • Better enforce both physical and logical security policies • Achieve compliance with multiple regulations

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 7, Business Continuity - Expert Webcast VIEW WEBCAST PREMIERED:   12 JAN 2005, 09:00 EST (14:00, GMT) SUMMARY:   One of the fundamental objectives of security is availability. This class focuses on the critical aspects of availability: business continuity planning and disaster recovery.

	Preventing Mass Worm Attacks from Impacting Business Continuity - Vendor Webcast VIEW WEBCAST PREMIERED:   19 JAN 2005, 14:00 EST (19:00, GMT) SUMMARY:   Learn firsthand how Determina is helping this global, Fortune 500-size company stop mass worm attacks and protect their most valuable asset -- business continuity!

	VIEW ALL WEBCASTS ON INFORMATION SECURITY INCIDENT RESPONSE

WHITE PAPERS

	Zenith ARCA Price List Published by: Zenith Infotech | 29 Oct 2009 DATA SHEET - Check out this price list and specifications of all of Zenith's ARCA (Advanced Recovery and Continuity Appliance) models available.

	Top 10 Ways to Optimize Remote Office Disaster Recovery Published by: Zenith Infotech | 29 Oct 2009 WHITE PAPER - Dealing with disasters at remote offices, where you likely have little or no technical staff, can be challenging—and, if you're not careful, expensive. Here are our top 10 tips for optimizing branch office DR while achieving overall improvements in cost efficiency.

	eBook: Backup and Disaster Recovery Published by: Zenith Infotech | 29 Oct 2009 EBOOK - In these articles, Network World and its sister publications CIO, Computerworld, CSO and InfoWorld lay down the groundwork and explore the latest tips and technologies for no-fail corporate data backup and disaster recovery.

	VIEW ALL WHITE PAPERS IN THIS TOPIC

DEFINITIONS: 1 - 1 of 1

	incident response 31 Aug 2005 WORD - Incident response is an organized approach to addressing and managing the aftermath of a security breach or attack (also known as an incident). The goal is to handle the situation in a way that limits damage and reduces ...

	VIEW ALL DEFINITIONS ON INFORMATION SECURITY INCIDENT RESPONSE

	SEE ALSO - Topics Related to Information Security Incident Response:  Network Intrusion Detection (IDS), Network Intrusion Prevention (IPS), Network Behavior Anomaly Detection (NBAD), Security Event Management, Monitoring Network Traffic and Network Forensics, Denial of Service (DoS) Attack Prevention