Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Effective Incident Response Presented by Greg Hedrick, Manager of Security Services Copyright Purdue University 2007. This work is the intellectual property.

Published byElla Butler Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Effective Incident Response Presented by Greg Hedrick, Manager of Security Services Copyright Purdue University 2007. This work is the intellectual property."— Presentation transcript:

1 1 Effective Incident Response Presented by Greg Hedrick, Manager of Security Services Copyright Purdue University 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author.

2 2 Effective Incident Response  Why start a formal program?  Definition of an IT Incident  The Process  Infrastructure Requirements  Communications Channels  Notable Items

3 3 Why start a formal program?  Manage Communications  Proactive Opportunities  Awareness Opportunities  Regulatory Compliance  Standardize Procedures  Identify System Owners

4 4 Definition of an IT Incident  Purdue Policy Definition Any event involving University IT Resources which violates Indiana state or U.S. federal law, or violates regulatory requirements which Purdue is obligated to honor, or violates Purdue University policies, or is determined to be harmful to the security and privacy of University data, or IT Resources associated with, students, faculty, staff, and/or the general public, or is construed as harassment, or involves the unexpected disruption of University services.

5 5 The Process

6 6 The Process Data Exposure Example

7 7 Infrastructure Requirements  People  Tools  Policy  Documented Procedures

8 8 Communication Channels  Secure Wiki  Policy  Presentations / Training  Trusted Community  Procedures  Mailing Lists  Monthly Reports

9 9 Notable Items  Clearly define “investigable” events  Dedicate staff to the process  Define “incident” carefully  Clearly define roles and responsibilities  Establish policy, procedures, training and infrastructure in parallel  Be prepared immediately for management reporting

10 10 Questions? http://www.purdue.edu/securepurdue/steam/about.cfm Greg Hedrick hedrick@purdue.edu

Download ppt "1 Effective Incident Response Presented by Greg Hedrick, Manager of Security Services Copyright Purdue University 2007. This work is the intellectual property."

Similar presentations

What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.

What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.
Crisis Communications for Security Issues: A Nightmare You Can Manage Marilu Goodyear Donna Liss Allison Rose Lopez Jenny Mehmedovic The University of.

Crisis Communications for Security Issues: A Nightmare You Can Manage Marilu Goodyear Donna Liss Allison Rose Lopez Jenny Mehmedovic The University of.
Copyright Sylvia Maxwell and Michael White, 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared.

Copyright Sylvia Maxwell and Michael White, This work is the intellectual property of the author. Permission is granted for this material to be shared.
Making the Case for Security: An Application of the NIST Security Assessment Framework to GW January 17, 2003 David Swartz Chief Information Officer Guy.

Making the Case for Security: An Application of the NIST Security Assessment Framework to GW January 17, 2003 David Swartz Chief Information Officer Guy.
A Model for IT Policy Development Marilu Goodyear & Beth Forrest Warner University of Kansas Educause 2001October 29, 2001.

A Model for IT Policy Development Marilu Goodyear & Beth Forrest Warner University of Kansas Educause 2001October 29, 2001.
Advancing Security Programs through Partnerships Cathy HubbsShirley Payne IT Security Coordinator Director for Security Coordination & Policy George Mason.

Advancing Security Programs through Partnerships Cathy HubbsShirley Payne IT Security Coordinator Director for Security Coordination & Policy George Mason.
UWM CIO Office A Collaborative Process for IT Training and Development Copyright UW-Milwaukee, 2007. This work is the intellectual property of the author.

UWM CIO Office A Collaborative Process for IT Training and Development Copyright UW-Milwaukee, This work is the intellectual property of the author.
Pam Downs Ajay Gupta The Pennsylvania Prince George’s State University Community College Copyright Penn State University-2008. This work is the intellectual.

Pam Downs Ajay Gupta The Pennsylvania Prince George’s State University Community College "Copyright Penn State University This work is the intellectual.
1 IT Security-related Legislation Judy Borreson Caruso CUMREC 2004 May 18, 2004 Copyright Judy Borreson Caruso, 2004. This work is the intellectual property.

1 IT Security-related Legislation Judy Borreson Caruso CUMREC 2004 May 18, 2004 Copyright Judy Borreson Caruso, This work is the intellectual property.
Developing Professional Leaders Georgia Institute of Technology Linda A. Cabot, Director, OIT/ITS EDUCAUSE Midwest Regional 2006 Copyright Linda A. Cabot,

Developing Professional Leaders Georgia Institute of Technology Linda A. Cabot, Director, OIT/ITS EDUCAUSE Midwest Regional 2006 Copyright Linda A. Cabot,
Tales from the Trenches Copyright Long, Mitrano, McGovern, and Orr, 2003. This work is the intellectual property of the authors. Permission is granted.

Tales from the Trenches Copyright Long, Mitrano, McGovern, and Orr, This work is the intellectual property of the authors. Permission is granted.
1 Institutions as Allies in the Security Challenge Wayne Donald, Virginia Tech Cathy Hubbs, George Mason University Darlene Quackenbush, James Madison.

1 Institutions as Allies in the Security Challenge Wayne Donald, Virginia Tech Cathy Hubbs, George Mason University Darlene Quackenbush, James Madison.
Information Security Governance in Higher Education Policy2004 The EDUCAUSE Policy Conference Gordon Wishon EDUCAUSE/Internet 2 Security Task Force This.

Information Security Governance in Higher Education Policy2004 The EDUCAUSE Policy Conference Gordon Wishon EDUCAUSE/Internet 2 Security Task Force This.
Center for Instructional Technology James Madison University Strategies for Transitioning to the Age of Digital Media Sarah E. Cheverton James Madison.

Center for Instructional Technology James Madison University Strategies for Transitioning to the Age of Digital Media Sarah E. Cheverton James Madison.
Intellectual Property Protocol and Assessment for Distance Learning Liz Johnson Project Manager Advanced Learning Technologies Board of Regents of the.

Intellectual Property Protocol and Assessment for Distance Learning Liz Johnson Project Manager Advanced Learning Technologies Board of Regents of the.
1 Fighting Back With An Alliance For Secure Computing And Networking Wayne Donald, Virginia Tech Cathy Hubbs, George Mason University Darlene Quackenbush,

1 Fighting Back With An Alliance For Secure Computing And Networking Wayne Donald, Virginia Tech Cathy Hubbs, George Mason University Darlene Quackenbush,
The Team Approach: A Paradigm Shift for Designing Successful Online Courses NERCOMP 2005 College for Lifelong Learning, Manchester, NH.

The Team Approach: A Paradigm Shift for Designing Successful Online Courses NERCOMP 2005 College for Lifelong Learning, Manchester, NH.
Classroom Technologies Re-organization Copyright Kathy Bohnstedt, 2004. This work is the intellectual property of the author. Permission is granted for.

Classroom Technologies Re-organization Copyright Kathy Bohnstedt, This work is the intellectual property of the author. Permission is granted for.
Best Practices For Using Technology To Deliver Instructional Support Services Dr. Steven G. Sachs Northern Virginia Community College Copyright Steven.

Best Practices For Using Technology To Deliver Instructional Support Services Dr. Steven G. Sachs Northern Virginia Community College Copyright Steven.
Herding CATS: the Community of Academic Technology Staff Lou Zweier, Director CSU Center for Distributed Learning The California State University NLII,

Herding CATS: the Community of Academic Technology Staff Lou Zweier, Director CSU Center for Distributed Learning The California State University NLII,

Similar presentations

Ads by Google