4. Incident Response

Incident Response
An incident may be defined as an event that may be, or may lead to, a business interruption, disruption, loss and/or crisis.
When an out-of-normal condition in your organization occurs, it must be acknowledged as quickly as possible, assessed as to its nature and severity, and some sort of response initiated.
An incident response plan establishes the recommended organization, actions, and procedures when incidents occur. There are many types of computer incidents that may require Incident Response activation. Some examples include:

• Breach of Personal Information / Compromised User Credentials
• Denial of Service / Distributed Denial of Service / Sniffing
• Excessive Port Scans
• Firewall Breach / Policy Violation
• Virus Outbreak / Malware (Worms, Trojans)
• Compromised Systems / Defacing
• Law Enforcement Request
• Lost Equipment / Theft / Physical Break-in

The above mentioned points are depending on the needs to process them in an Incident Response Plan. Innovice-IT B.V. is able to help your organization with the development of an Incident Response Plan and the implementation of an Incident Response Team. Also when an incident happens and you need Incident Respons Coordination, Innovice-IT B.V. can help you.

incident response

 


Search

Innovice-IT on Twitter

  1. Bas Eikelenboom
    Bas Eikelenboom: RT @remco_verhoef: Multiple Mirai based bots attacking our honeypots, sending their debug output to the open connection. Weird. #mirai #hon

  2. Bas Eikelenboom
    Bas Eikelenboom: RT @remco_verhoef: Host 78.40.78.118 runs Meterpreter and according to @urlscanio uses domain names hxxps://(incident[.])credit-agricole[.]…

  3. Bas Eikelenboom
    Bas Eikelenboom: RT @remco_verhoef: Old trick to identify masked Nginx or Apache webservers running on Windows (not sure if it works for all versions) is to…

  4. Bas Eikelenboom

  5. Bas Eikelenboom
    Bas Eikelenboom: RT @whogohost: @remco_verhoef @urlscanio Hi @remco_verhoef, Thank you for bringing this to our notice. We are currently investigating this…

Archive

Categories