Академический Документы
Профессиональный Документы
Культура Документы
Module 09
Classified Information
Attack
Government
Database
Analyze and
Store
Collect Present in
Evidence Court
Report:
Organization name
Name and phone number of the person who discovered the incident
Names and phone numbers of first responders
Event type (physical, malicious code, or network attack)
Date and time of event
Source and destination of systems and networks
OS and antivirus software used, including version information
Methods used to detect the incident
Business impact of the incident
What steps were taken to resolve the incident
1. How many times have you had to consult an IRP, and for what
reasons?