Information Security Incident Management. A Methodology
Neil Hare-Brown
This book offers a guide to managing an information security incident. It can help you investigate and recover from any information security incident.
One key mechanism by which risk of loss can be minimized is through the sound detection, investigation and recovery from information security incidents as and when they occur. This ability to respond to and manage incidents in a consistent way also supports confidence in the organization as a trustworthy processor of information.
Using the international standard ISO/IEC 27002 (formerly ISO/IEC 17799) and the technical report ISO/IEC TR 18044, this book provides guidance on standard policy, requirements and methodology for information security incident response and management across many organizations, both commercial and government.
This guide to managing information security risks:
- Explains current practice in information security incident management, including terms, roles, and disciplines
- Explains why organizations should adopt a methodical approach to information security incident management
- Proposes a rigorous methodology and inclusive set of steps that can be used to investigate and recover from any information security incident
- Proposes a generic specification for the design of an Incident Handling System to help you improve your recording and management of incidents
- Provides supporting information and example documents that help in the implementation of an effective information security incident response and management system.
Sample pages available to download for free. This link will take you to a short form; on submission of the form you will be able to download the PDF [pdf size 27KB].
Who will find this useful?
- Senior managers
- Auditors
- Those responsible for managing information security incidents
- Other personnel with responsibility for information security.