Conduct some research and identify a security incident common to organizations.
business
Description
Business Information System; DB 6
- Conduct some research and identify a security incident common to organizations. What did you find out? How could this incident been prevented? (NOTE: There are many sites that index security incidents that include links to news stories and disclosure statements.)
- What do you believe are the critical elements of an incident response plan? Why?
- What is chain of custody and what is its role in a forensic investigation?
- If your organization was breached and you are not governed by any regulations to disclose or reach out to law enforcement, would you reach out to them? Why or why not? Why is this even a question?
- What is ransomware? How can you best prevent its spread in an organization?
- Why should the IT department not be solely responsible for business continuity?
- How often should a business continuity plan be tested? Explain your recommendation.
- Let's say your CEO doesn't believe Business Continuity Planning is essential. The CEO thinks it is a waste of time, money, and resources that can be better directed towards current organizational challenges. How would you response or counter this perspective? (NOTE: This may require a longer view to your approach and not a single communication or one-time strategy - just explain the steps you would take)
PLEASE NEED REFERENCE LINKS (NOT REFERENCE FROM BOOK).
*IN-DEPTH ANSWER, 2-3 PARAGRAPHS PER QUESTION
* NEED IT BY TUESDAY OR SOON, SO I WILL HAVE TIME TO REVIEW
* ANSWER MUST BE RELEVANT TO THE INFORMATION SECURITY OR CYBERSECURITY NOT REGULAR SECURITY.
