The Effective Incident Response Team - Brossura

Lucas, Julie; Moeller, Brian

9780201761757: The Effective Incident Response Team

Brossura

ISBN 10: 0201761750 ISBN 13: 9780201761757

Casa editrice: Addison-Wesley, 2003

In this guide for system and network administrators and managers, Lucas, director of security operations for a financial services company, and Moeller, a senior security engineer at a university, provide a set of steps for forming and managing a Computer Incident Response Team (CIRT). They explain how to establish a CIRT's focus and scope and offer organizational and workflow strategies for maximizing technical resources. Annotation (c) Book News, Inc., Portland, OR (booknews.com)

Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.

L'autore:

Brian Moeller is a senior security engineer for Ohio State University's Incident Response Team.

Dalla quarta di copertina:

When an intruder, worm, virus, or automated attack succeeds in targeting a computer system, having specific controls and a response plan in place can greatly lessen losses. Accordingly, businesses are realizing that it is unwise to invest resources in preventing computer-related security incidents without equal consideration of how to detect and respond to such attacks and breaches.

The Effective Incident Response Team is the first complete guide to forming and managing a Computer Incident Response Team (CIRT). In this book, system and network administrators and managers will find comprehensive information on establishing a CIRT's focus and scope, complete with organizational and workflow strategies for maximizing available technical resources. The text is also a valuable resource for working teams, thanks to its many examples of day-to-day team operations, communications, forms, and legal references.

IT administrators and managers must be prepared for attacks on any platform, exploiting any vulnerability, at any time. The Effective Incident Response Team will guide readers through the critical decisions involved in forming a CIRT and serve as a valuable resource as the team evolves to meet the demands of ever-changing vulnerabilities.

Inside, readers will find information on:

Formulating reactive or preventative operational strategy
Forming, training, and marketing the CIRT
Selecting penetration-testing, intrusion-detection, network-monitoring, and forensics tools
Recognizing and responding to computer incidents and attacks, including unauthorized access, denial-of-service attacks, port scans, and viruses
Tracking, storing, and counting incident reports and assessing the cost of an incident
Working with law enforcement and the legal community
Benefiting from shared resources
Scrutinizing closed incidents to further prevention
Offering services such as user-awareness training, vulnerability and risk assessments, penetration testing, and architectural reviews
Communicating the CIRT's return on investment through management reporting

0201761750B10062003

Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.