Computers and Technology, 18.03.2021 01:20 syd141
Scenario After the recent security breach, Always Fresh decided to form a computer security incident response team (CSIRT). As a security administrator, you have been assigned the responsibility of developing a CSIRT policy that addresses incident evidence collection and handling. The goal is to ensure all evidence collected during investigations is valid and admissible in court.
Consider the following questions for collecting and handling evidence:
1. What are the main concerns when collecting evidence?
2. What precautions are necessary to preserve evidence state?
3. How do you ensure evidence remains in its initial state?
4. What information and procedures are necessary to ensure evidence is admissible in court?
Tasks
Create a policy that ensures all evidence is collected and handled in a secure and efficient manner. Remember, you are writing a policy, not procedures. Focus on the high-level tasks, not the individual steps.
Address the following in your policy:
▪ Description of information required for items of evidence
▪ Documentation required in addition to item details (personnel, description of circumstances, and so on)
▪ Description of measures required to preserve initial evidence integrity
▪ Description of measures required to preserve ongoing evidence integrity
▪ Controls necessary to maintain evidence integrity in storage
▪ Documentation required to demonstrate evidence integrity
Answers: 3
Computers and Technology, 22.06.2019 04:50
Which are steps taken to diagnose a computer problem? a) reproducing the problem and using error codes b) reproducing the problem and troubleshooting c) using error codes and troubleshooting d) using error codes and stepping functions
Answers: 1
Computers and Technology, 22.06.2019 18:30
What is outfitting a workplace with video in a technology
Answers: 2
Computers and Technology, 22.06.2019 22:30
Jason needs to learn a new web tool. he went through his books to understand more about it. now he wants hands-on experience with using that tool. what would him? jason can use websites where workspace is provided to test the results of your code.
Answers: 2
Computers and Technology, 23.06.2019 07:00
You need a quick answer from a coworker. the most effective way to reach your coworker is through a. cloud server b. instant message c. teleconference d. telepresence
Answers: 1
Scenario After the recent security breach, Always Fresh decided to form a computer security incident...
Physics, 24.05.2021 21:00
English, 24.05.2021 21:00
English, 24.05.2021 21:00
History, 24.05.2021 21:00
Mathematics, 24.05.2021 21:00
Mathematics, 24.05.2021 21:00
Mathematics, 24.05.2021 21:00
Arts, 24.05.2021 21:00