As with any formal effort, developing the CSIRT requires a formal plan, which encompasses the scope and responsibilities of the team as well as its reporting structure and functional processes. What items should this plan address?
What will be an ideal response?
The plan should address the following items:
Time frame for development of the CSIRT
Gap analysis of needed versus available personnel resources (skills)
CSIRT structure and team model
Available and needed funding for initial and ongoing CSIRT operations
Training and testing methods and requirements for the CSIRT
Formal and informal communications requirements between the CSIRT and existing IT/InfoSec operations, organizational management, and other responsible individuals
Procedures for updating and modifying CSIRT documents and activities, including findings from training and testing methods
You might also like to view...
A(n) ____ is the list of officials ranging from an individual's immediate supervisor through the top executive of the organization.
A. emergency report B. chain of command C. cross-training D. crisis report
What is the name of the part of the weld that letter C is pointing to in Figure 1?
a. Leg
b. Root
c. Face
d. Toe
e. Land
What is used for bulk storage or transport of dry materials?
e. Weirs f. Dryers g. Hoppers h. Downcomers
Voltage and current are ________
A) directly proportional B) quantities that add C) inversely proportional D) unrelated