The Effective Incident Response Team

eBook Information

The Effective Incident Response Team ISBN  0201761750 Release Date  26 September 2003 Category  Computer Security Tags  incident,   team,   incident response,   0201761750,   "incident response",   "incident",   effective,   incident handling,   This book @Amazon  View Tools Google Search Web flazx.com

Description When an intruder, worm, virus, or automated attack succeeds in targeting a computer system, having specific controls and a response plan in place can greatly lessen losses. Accordingly, businesses are realizing that it is unwise to invest resources in preventing computer-related security incidents without equal consideration of how to detect and respond to such attacks and breaches. The Effective Incident Response Team is the first complete guide to forming and managing a Computer Incident Response Team (CIRT). In this book, system and network administrators and managers will find comprehensive information on establishing a CIRT's focus and scope, complete with organizational and workflow strategies for maximizing available technical resources. The text is also a valuable resource for working teams, thanks to its many examples of day-to-day team operations, communications, forms, and legal references. IT administrators and managers must be prepared for attacks on any platform, exploiting any vulnerability, at any time. The Effective Incident Response Team will guide readers through the critical decisions involved in forming a CIRT and serve as a valuable resource as the team evolves to meet the demands of ever-changing vulnerabilities. Inside, readers will find information on: Formulating reactive or preventative operational strategy Forming, training, and marketing the CIRT Selecting penetration-testing, intrusion-detection, network-monitoring, and forensics tools Recognizing and responding to computer incidents and attacks, including unauthorized access, denial-of-service attacks, port scans, and viruses Tracking, storing, and counting incident reports and assessing the cost of an incident Working with law enforcement and the legal community Benefiting from shared resources Scrutinizing closed incidents to further prevention Offering services such as user-awareness training, vulnerability and risk assessments, penetration testing, and architectural reviews Communicating the CIRT's return on investment through management reporting Other books on Computer Security Open Source Systems Security Certification Applied Security Visualization Ethical Hacking Hacking Exposed Linux (Hacking Exposed) Intrusion Detection Systems (Advances in Information Security) VizSEC 2007: Proceedings of the Workshop on Visualization for Computer Security (Mathematics and Visualization) Security and Software for Cybercafes (Premier Reference Source) Crimeware: Understanding New Attacks and Defenses (Symantec Press) Insider Attack and Cyber Security: Beyond the Hacker (Advances in Information Security) Trust and Security in Collaborative Computing (Computer and Network Security) Computer Security, Privacy and Politics: Current Issues, Challenges and Solutions Secure Computer and Network Systems: Modeling, Analysis and Design No Tech Hacking: A Guide to Social Engineering, Dumpster Diving, and Shoulder Surfing Netcat Power Tools Secrets Stolen, Fortunes Lost: Preventing Intellectual Property Theft and Economic Espionage in the 21st Century