CHAPTER
3
image
Getting More Out of Your Plans
image
In this chapter, I’ll discuss the additional value of incident response plans in addition to mitigating certain risks. As discussed in Matthew Todd’s Chapter 2, the standard of due diligence for information security management is a moving target at best. Information security professionals must regularly perform tasks that establish due diligence in the protection of their organization. A documented plan creates an opportunity to demonstrate to management, auditors, and individuals that the organization is ...

Get The Computer Incident Response Planning Handbook: Executable Plans for Protecting Information at Risk now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.