Information Security Incident Response-Information

Top Stories

Answer 29 Oct 2019
What are the roles and responsibilities of a liaison officer?

While liaison officer responsibilities vary depending on the company they work for, their strong organizational and communications skills make them critical to incident response. Continue Reading
By
- Sharon Shea, Executive Editor
- Mike Rothman, Securosis
Tip 31 Oct 2018
NIST incident response plan: 4 steps to better incident handling

The NIST incident response plan involves four phases enterprises can take to improve security incident handling. Expert Mike O. Villegas reviews each step. Continue Reading
By
- Mike O. Villegas, K3DES LLC

Tip 16 Feb 2017
Intrusion response plans: Tales from front-line IT support

The right intrusion response training can make all the difference in data breach prevention. Expert Joe Granneman provides a real-world example from which enterprises can learn. Continue Reading
By
- Joseph Granneman, Illumination.io
News 14 Feb 2017
Ramzan advocates collaborative security in RSAC keynote

Zulfikar Ramzan opens RSA Conference 2017 by reminding enterprises that just as cyberattacks have long-tail repercussions, so too do collaborative security decisions made in business. Continue Reading
By
- Michael Heller, TechTarget
Answer 09 Jan 2017
Are investigations crucial to data breach protection?

SWIFT banking has a team dedicated to data breach investigations. Expert Mike O. Villegas discusses why this is necessary and whether other organizations should follow suit. Continue Reading
By
- Mike O. Villegas, K3DES LLC
Answer 05 Oct 2016
How would a cyberattack information database affect companies?

A proposed cyberattack information database in the U.K. aims to improve cyberinsurance. Expert Mike Chapple explains what collecting data breach information means for U.S. companies. Continue Reading
By
- Mike Chapple, University of Notre Dame
Tip 12 Jul 2016
Best practices for an information security assessment

Information security assessments can be effective for identifying and fixing issues in your enterprise's policies. Expert Kevin Beaver explains the key components of the process. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Tip 05 Jul 2016
How tabletop exercises can help uncover hidden security risks

A regular tabletop exercise could help to identify security risks in scenarios relevant to your organization. Expert Bob Wood explains the steps in the process. Continue Reading
By
- Robert Wood
Answer 23 Nov 2015
What data breach notification policy should enterprises follow?

A data breach notification policy is important to have, but deciding how to alert customers can be tough. Expert Mike Chapple explains some best practices. Continue Reading
By
- Mike Chapple, University of Notre Dame
Tip 10 Sep 2015
Improve corporate data protection with foresight, action

Better corporate data protection demands foresight and concrete action. Learn why breach training, monitoring and early detection capabilities can minimize damage when hackers attack. Continue Reading
By
- David Sherry, Brown University
Tip 06 Feb 2015
SSL/TLS security: Addressing WinShock, the Schannel vulnerability

Schannel is the latest cryptographic library to encounter SSL/TLS security issues. Expert Michael Cobb discusses the WinShock vulnerability and how to mitigate enterprise risks. Continue Reading
By
- Michael Cobb
Tip 13 Jan 2015
Lessons learned: Network security implications of Shellshock

Shellshock had a tremendous impact on network security, affecting many popular vendors and products. Expert Kevin Beaver discusses what Shellshock means to network security, and the lessons that can be learned from the vulnerability. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Feature 31 Mar 2014
Linux Malware Incident Response

In this excerpt from Linux Malware Incident Response, authors Cameron Malin, Eoghan Casey and James Aquilina discuss volatile data collection methodology, steps and preservation. Continue Reading
By
- SearchSecurity and Syngress
Tip 15 Aug 2013
Security incident response procedures: When to do a system shutdown

At times, security incident response procedures require drastic measures. Expert Nick Lewis explains when and how to perform a system shutdown. Continue Reading
By
- Nick Lewis
Tip 21 Oct 2008
Recovering stolen laptops one step at a time

When a student's laptop was stolen last year on a university campus, police and IT investigators went to work, recovering it within a matter of weeks. Neil Spellman, one of the investigators on the case, offers some best practices on what to do if a laptop is taken, and how to prevent theft in the first place. Continue Reading
By
- Neil Spellman, Contributor
Tip 03 May 2007
Digital forensics tool Helix 'does no harm'

Forensics isn't just for the scientists. This month, contributor Scott Sidel recommends Helix, a digital forensics tool that can do some important detective work on your system. Continue Reading
By
- Scott Sidel
Answer 12 Feb 2007
How should security and networking groups manage the firewall?

When it comes to firewalls, the networking group often handles the installation, while the information security department writes the rules. Should these responsibilities be split? In this expert Q&A, security management pro Shon Harris reveals how each group should contribute to the firewall management process. Continue Reading
By
- Shon Harris , Logical Security