Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jane Drews University IT Security Officer EDUCAUSE On-line 2009

Published byGavin Bryant Modified over 6 years ago

Similar presentations

Presentation on theme: "Jane Drews University IT Security Officer EDUCAUSE On-line 2009"— Presentation transcript:

1 Jane Drews University IT Security Officer EDUCAUSE On-line 2009
Incident Management Jane Drews University IT Security Officer EDUCAUSE On-line 2009

2 General Elements Policy Training Technical and operational issues
Procedures and decision making Quality Improvement

3 EDUCAUSE/I2 Information Security Guide
Aligns with ISO standards for Information Security Management Chapter 13: Information Security Incident Management

4 Sample Security Incident
Some policy was in place Decision making authority and depth Technical decisions Political decisions Operational decisions Insufficient security services Notification questions not fully understood

5 Notification Considerations
Applicable policy, and/or local, state, or federal laws Physical possession (lost or stolen device?) Credible evidence the information was copied/removed Length of time between intrusion and detection Purpose of the intrusion was acquisition of information Credible evidence the information was in a useable format (unencrypted) Ability to reach the affected individuals

6 Preparation, Detection, and Reporting
Policy for reporting, containment, notifications, communications Training – End users, IT admins, and Security personnel Technical resources/services Detection, analysis, forensics

7 Security Incident Response and Process Improvement
Response team members vary by incident Security, Sysadmins Affected Unit, Legal, LE, Media/Relations, Administration, CIO, CISO Clearly defined expectations at all levels Responsibility, timing, recovery Debriefing (lessons learned)

8 Questions ?

Download ppt "Jane Drews University IT Security Officer EDUCAUSE On-line 2009"

Similar presentations

Security and Personnel

Security and Personnel
Framework for Improving Critical Infrastructure Cybersecurity NIST Feb 2014.

Framework for Improving Critical Infrastructure Cybersecurity NIST Feb 2014.
VITA [Virginia Information Technologies Agency]

VITA [Virginia Information Technologies Agency]
Developing Network Security Strategies Network Security D ESIGN Network Security M ECHANISMS.

Developing Network Security Strategies Network Security D ESIGN Network Security M ECHANISMS.
Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.

Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.
Budget Prep 2011. Budget Prep Dates Budgets will be released mid-May Budgets will be due to the Budget Office on June 18 th Budget will be finalized and.

Budget Prep Budget Prep Dates Budgets will be released mid-May Budgets will be due to the Budget Office on June 18 th Budget will be finalized and.
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
Enterprise Security. Mark Bruhn, Assoc. VP, Indiana University Jack Suess, VP of IT, UMBC.

Enterprise Security. Mark Bruhn, Assoc. VP, Indiana University Jack Suess, VP of IT, UMBC.
By Drudeisha Madhub Data Protection Commissioner Date: 12.08.14.

By Drudeisha Madhub Data Protection Commissioner Date:
Ensuring Information Security

Ensuring Information Security
Information Security Compliance System Owner Training Richard Gadsden Information Security Office Office of the CIO – Information Services Sharon Knowles.

Information Security Compliance System Owner Training Richard Gadsden Information Security Office Office of the CIO – Information Services Sharon Knowles.
INFORMATION SECURITY GOVERNANCE (ISG) Relates to the security of information systems Is an element of corporate governance.

INFORMATION SECURITY GOVERNANCE (ISG) Relates to the security of information systems Is an element of corporate governance.
Chapter 10: Ethics, Privacy, and Security Copyright © 2013 Pearson Education, Inc. publishing as Prentice Hall Chapter 10 - 1.

Chapter 10: Ethics, Privacy, and Security Copyright © 2013 Pearson Education, Inc. publishing as Prentice Hall Chapter
Module 3 Develop the Plan Planning for Emergencies – For Small Business –

Module 3 Develop the Plan Planning for Emergencies – For Small Business –
Welcome To the Objectives Pillar Workshop 2009. Introduction Business need Target Audience - technical and professional staff who support decision maker.

Welcome To the Objectives Pillar Workshop Introduction Business need Target Audience - technical and professional staff who support decision maker.
Incident Response And a debrief of UNM’s response to the Heartbleed vulnerability 1 Presented by: Michael Burlison, Information Security Analyst – CISSP,

Incident Response And a debrief of UNM’s response to the Heartbleed vulnerability 1 Presented by: Michael Burlison, Information Security Analyst – CISSP,
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Chapter 11: Managing a Secure Network

Chapter 11: Managing a Secure Network
INCIDENT RESPONSE IMPLEMENTATION David Basham University of Advancing Technology Professor: Robert Chubbuck NTS435.

INCIDENT RESPONSE IMPLEMENTATION David Basham University of Advancing Technology Professor: Robert Chubbuck NTS435.
STANKIEWICZ. Essential Questions and Learning What is the purpose of criminal Investigation? What are the basic steps in criminal investigations? What.

STANKIEWICZ. Essential Questions and Learning What is the purpose of criminal Investigation? What are the basic steps in criminal investigations? What.

Similar presentations

Ads by Google