Five Considerations for Building an Effective Incident Response Framework

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7
Next Five Considerations for Building an Effective Incident Response Framework-3 Next

Eliminate the noise

Organizations need to determine where the rogue hosts are located. A rogue host can be one that is not compliant with standard controls, not authorized to connect to the network, infected with low-impact malware or network worms, one with unauthorized or inappropriate software, or a host where antivirus has detected a known bad actor but could not remove it.

Although news headlines are consistently reporting that cyber threats are evolving into more targeted, sophisticated attacks, it may come as a surprise to some organizations that 75 percent of the security breaches that occur are opportunistic. According to a recent Verizon data breach report, these attacks are not targeted at any specific individual or organization.

For organizations that fall victim to a security breach, there tends to be a large focus on reducing the breach buzz to repair earned reputation and rebuild customer trust. For IT teams within the company, this means the noise and buzz must be reduced by cutting down on the time and resources it takes to repair the network.

Building an effective incident response program is essential for organizations because it enables them to not only contain a single incident, but it also helps to start modeling the techniques of an attack. Incident response stems from an approach that detects and enumerates the steps taken by an attacker to compromise a system. This information is used by the incident response team, which drives future incident response activities.

In this slideshow, AlienVault, provider of Unified Security Management™ solutions and crowd-sourced threat intelligence, offers five considerations for building an effective framework for incident response in order to remediate the threat.

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

IT security careers The Most In-Demand Security Jobs and How to Get Them

Security professionals are in demand right now, and entry-level security jobs generally fall into either an engineer or analyst role. Find out more about required skills and career paths. ...  More >>

142x105itbeusasecurity2.jpg 9 Predictions for Cybersecurity’s Role in Government and Politics in 2017

Experts predict how cybersecurity will affect and involve our government, policies and politics in 2017. ...  More >>

Shadow IT Security How Risky Behaviors Hurt Shadow IT Security

Examine some of the concerns involving shadow IT security and some of the riskiest behaviors, applications and devices. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.