Latest Content from CSI:

Is Data Loss Plummeting?

Our guess is that the primary finding of the latest Verizon business 2011 Data Breach Investigations Report –namely that even with doubling the number of examined incident cases, the total number of compromised data records dropped by an order of magnitude—will be so unpalatable to some that the report will fall off the radar in a hurry.  [more]

STAY CONNECTED WITH CSI!

We post valuable information, special discounts and offer you the opportunity to give your opinion and feedback to other security professionals and CSI.

     

  CSI's Robert Richardson's Twitter
Online Events

Stay informed with our interactive webinars and virtual events.

 CSI Online Events
CSI Computer Crime & Security Survey

The most widely cited cybercrime statistics in the world. Access your copy today.

 CSI Computer Crime & Security Survey
ICSC 2011

May 19-21, 2011 in Mumbai, India
ICSC 2011 features a comprehensive program, covering key topics, to provide the security knowledge one needs to succeed in today's environment.
Learn more here.

 ICSC 2011
CSI's Mission

If you're an information security professional or are aspiring to be one, then CSI is here to help you succeed.

 CSI Logo

Security Incidents Training On-Demand

Responding to Security Incidents
Presenter:  Brad Smith, Director, Computer Institute of the Rockies (View Bio)
Originally Aired:  Tuesday, July 20, 2010
Price: $200
Register Now

ALREADY AN ELITE MEMBER or REGISTERED? - Click here to launch the video.

What C-Levels, Managers and Members need to know about Incident Response Teams.

This session presents a how-to for setting up, hiring, managing and responding to cyber security incidents.  Executives will understand how their decisions in the root design can make or break the Incident Response (IR) Team.  Managers will learn what to look for when hiring and managing this team of experts.  They also learn tips and techniques to reduce the drama and increase the efficiency of the IR Team.  Team members will have a chance to see the entire process of how IR Teams are created from the start, ways they might change their current team and a comparison between NIST and DHS recommend IR techniques.

You’ll also learn where to get help in starting or expanding your current IR Team.  Forms, paperwork, checklist and more gems picked from the Internet will keep you from re-inventing the wheel. 

Course Outline

1st hour

 

Introduction

Introduce speaker and qualifications

Goals

What the attendees will learn 

- State 3 tasks done by C’s to create an IRTeam
- List 4 tasks Managers need to master to make the Team run smoothly- State tasks of Members during short and standard IR events
- Compare and contrast recommendations of NIST and DHS

Why IR is needed

3 Laws that require IR are discussed

Definition of terms

Clarification so everybody speaks the same language 

- NIST
- DHS

C Level Response

Tasks that need to be done by upper management as outlined by NIST 800-81

- Policies and Procedures needed to put Team in place
- 3 ways to structure the Team- 3 ways to staff the Team
- Team tasks when not responding

2nd Hour

 

Mid manager Response

How does middle management manage the Team? 

- Members and qualifications of the Team
- Task per Member
- Resources the Team needs- Care and feeding of the Team
- How bad is it?  Calculations per NIST  

3rd Hour

 

Task of Response

How to respond to 6 different IR scenarios for DHS and the Cyberterrorism Defense Analysis Center. 

- Difference in short and standard IR tasks
- Review actions taken for all intrusion solutions
- Review standard term intrusion solutions
- Review short term intrusion solutions

More Help

Where to get more help 

- Security groups like CSI
- DHS guidelines
- NIST guidelines
- Web sites

Review and Questions

Review of session

Answer questions

Thanks to participants

Register Now

ALREADY AN ELITE MEMBER or REGISTERED? - Click here to launch the video.

For more information, please email csi@ubm.com.