O'Reilly logo

TICSA TruSecure™ ICSA Certified Security Associate Exam TU0-001 by Shawn Porter, Debra Littlejohn Shinder, Mike Chapple

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

General Incident-Handling Principles

There are six general principles that apply when handling all types of incidents, which are covered in the following sections.

Identify the CIRT Team

Every organization dependent upon computers should establish a Computer Incident Response Team (CIRT). This team possesses the training, knowledge, and authority to properly react to computer security incidents as they occur. The senior technical official in an organization (for example, CIO, CTO, IT Director) normally serves as the team leader. The remainder of the team is composed of technical experts and representatives of other organization divisions, as appropriate.

Declare an Incident

One of the most important functions of the team is to lay down policies ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required