Incident-Recovery Poloicy

Incident-Recovery Policy

XXXXXXXXXXXX

XXXXXXX

Incident-Response Policy

NO network is 100% fail-proofs. Natural disaster can strike or your organization can fall victim to a malicious attacks. In any event, having an effective incident-response policy that covers the development of an incident-response team, disaster-recovery process and the business-continuity planning can determine the amount of downtime the company will suffer. I will implement an incident-response policy that will reduce the amount of downtime the company may suffer if future incidents occur.

The focal point for handling security incidents for any organization should be the Computer Incident Security Team (CIRT). This team is an assigned group who is responsible for dealing with all security incidents. All team members’ duties should be clearly defined and no area is left uncovered. The team roles are as follow “CSIRT Team Leader will generally be responsible for the activities of the CSIRT and will coordinate reviews of its actions. The CSIRT Incident Lead has ownership of the particular incident or set of related security incidents. All communication about the event is coordinated through the Incident Lead, and when speaking with those outside the CSIRT, he or she represents the entire CSIRT. The CSIRT Associate Member consists of a number of specific individuals who handle and respond to particular incidents. Associate members will come from a variety of different departments in your organization. They should specialize in areas that are affected by security incidents but that are not dealt with directly by the core CSIRT. “("Computer Security Incident Recovery,") This team is responsible for monitoring the system for security breaches, serving as the central communication point to receive and impart vital information to the roper entities regarding the incident, document security incidents, promote security awareness to help prevent incidents from occurring within organization, remain...