Information Security Incident Management: A Methodology

Description

This book offers a guide to managing an information security incident. It can help you investigate and recover from any information security incident.

One key mechanism by which risk of loss can be minimized is through the sound detection, investigation and recovery from information security incidents as and when they occur. This ability to respond to and manage incidents in a consistent way also supports confidence in the organization as a trustworthy processor of information.

Using the international standard ISO/IEC 27002 (formerly ISO/IEC 17799) and the technical report ISO/IEC TR 18044, this book provides guidance on standard policy, requirements and methodology for information security incident response and management across many organizations, both commercial and government.

This guide to managing information security risks:

    * Explains current practice in information security incident management, including terms, roles, and disciplines

    * Explains why organizations should adopt a methodical approach to information security incident management

    * Proposes a rigorous methodology and inclusive set of steps that can be used to investigate and recover from any information security incident

    * Proposes a generic specification for the design of an Incident Handling System to help you improve your recording and management of incidents

    * Provides supporting information and example documents that help in the implementation of an effective information security incident response and management system.