(Answered) Describe the objectives and main elements of a CIRT plan. - Essay Prowess

(Answered) Describe the objectives and main elements of a CIRT plan.

(Answered) Describe the objectives and main elements of a CIRT plan.

Term Paper: Managing Organizational Risk
Due Week 10 and worth 150 points

No longer than a decade ago, IT security professionals had to work hard to persuade organizational leaders about the importance of developing effective risk management plans. Nowadays, due to the plethora of cautionary tales that organizations history provide, business leaders are informed on the need to manage risk and understand the crucial role of an organization’s IT infrastructure on its ability to perform business.
A computer incident response team (CIRT) plan can help prepare organizations for incidents that might occur.

Write an eight to ten (8-10) page paper in which you:

  1. Describe the objectives and main elements of a CIRT plan.
  2. Analyze the manner in which a CIRT plan fits into the overall risk management approach of an organization and how it supports other risk management plans.
  3. Provide at least two (2) examples of how CIRT plans define the who, what, when, where, and why of the response effort.
  4. Analyze the manner in which the development of a CIRT plan enables management to adopt a more proactive approach to risk management. Include recommendations for remaining proactive in the continual improvement and update of CIRT plans.
  5. Infer on the evolution of threats over the last decade that organizations must now consider.
  6. Predict the evolution of regulatory requirements mandating risk management processes and plans.
  7. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

CIS 527: Information Technology Risk Management

Abstract

To borrow the Boy Scout Motto, “Always be prepared” is the central focus of effectively managing organizational risk. Organizations must be resilient in the face of the multitude of situations that impact their operations. The help facilitate this most develop an overarching Business Continuity Plan (BCP) to provide a foundation for how the organization will respond, recovery and restore operations as quickly as possible in the event of service disruptions. Associated with the BCP is the Disaster Recovery Plan (DRP) which focuses on incidents that have, or will have an imminent large scale impact to operations. Some threats can cause large scale service disruptions but if identified and responded to early, their impact can be mitigated or remediated. This is the bailiwick of the Computing Incident Response Team (CIRT) and CIRT Plan. The CIRT Plan and members prepare for known threats, monitor for incidents of system exposure and respond quickly and appropriately to stop the incident before it becomes a disaster level event.

In this paper we will look at CIRT Plans further, discussing the following points:

  1. Describe the objectives and main elements of a CIRT plan.
  2. Analyze the manner in which a CIRT plan fits into the overall risk management approach of an organization and how it supports other risk management plans.
  3. Provide at least two (2) examples of how CIRT plans define the who, what, when, where, and why of the response effort.
  4. Analyze the manner in which the development of a CIRT plan enables management to adopt a more proactive approach to risk management. Include recommendations for remaining proactive in the continual improvement and update of CIRT plans.
  5. Infer on the evolution of threats over the last decade that organizations must now consider.
  6. Predict the evolution of regulatory requirements mandating risk management processes and plans.
  7. Computer Incident Response Team (CIRT) Plan: Objectives & Elements

            A computer incident (CI) is, as our course text defines, a violation or imminent threat of a violation of a security policy or security practice (Gibson, 2015, p. 401). The CIRT Plan is an actual formal document that provides the guidance of how the organization

Activate subscription to View the Whole Post

%d bloggers like this: