unit 8 Lab1
Craft a security or computer incident
Response policy – CIRT Response team

3. Why is it a good idea to include human resource on the incident Response Management Team?
Most organizations realize that there is no one solution or panacea for securing systems and data instead a multi-layered security strategy is required.

4. Why is it a good idea to include legal or general counsel in on the Incident Response Team?
An incident response must be decisive and executed quickly. Because there is little room for error, it is critical that practice emergencies are staged and response times measured.

5. How does an incident response plan and team help reduce the risk to the organization?
While preventing such attacks would be the ideal course of action for organizations, not all computer security incidents can be prevented.

6. If you are reacting to a malicious software attack such as a virus its spreading, during which step in the incident response process are you attempting to minimize its spreading?
In most areas of life, prevention is better than cure, and security is no exception. Wherever possible, you will want to prevent security incidents from happening in the first place. However, it is impossible to prevent all security incidents. When a security incident does happen, you will need to ensure that its impact is minimized. To minimize the number and impact of security incidents.
7. If you cannot cease the spreading, what should you do to protect your non-impacted mission critical IT infrastructure assets?
This research project will explore the significance of the Stuxnet worm as a
Call to action and focus attention on protecting, defending, detecting possibly
Malicious activity, and responding to security incidents as well as mitigating risks that impact critical infrastructure.

8. When a security incident has been declared,