Posted: August 16th, 2022

Why is it good practice to put an Incident Response Plan

Cybersecurity
1. Why is it good practice to put an Incident Response Plan in place for small software systems as well as large software systems? Give examples to support your position. 2. What are the essential outcomes of the Final Security Review? Why is this process necessary as a last step before release if security has been a consideration throughout the development process? 3. What general elements of a system should be closely monitored when it goes live for the first time? Can the level of vigilance over the system be relaxed after an initial deployment phase? 4. Why is periodic system review beneficial to security? Justify your position. 5. What are the essential outcomes of secure system retirement? Justify your position.

6. Why is it important to train personnel in security if it is not part of their job routine? Give examples to justify your position. 7. Why do insiders pose such a significant threat to an organization? Find examples to justify your position. 8. What are the main problems with preventing social engineering in an organization? Give examples to support your answer. 9. What are the top three outcomes an organization should have for security training in an organization? Justify your ranking. 10. What are three items that should be included in any organizational security awareness training? Why are these important to all organizations?

Question 1
Answer
Having an incident response plan in place is crucial in ensuring that the right steps are taken to contain the likely failure or compromise on a software system. Such a plan should detail the decisive steps that an organization’s information technology management team has to take in the likely incident of a security breach. The incident response plan should be tested on a regular basis to confirm that it is operatable in different circumstances.
Question 2
Answer
The Final Security Review analysis all the activities conducted within all the software that precedes its deployment. By undertaking this review, the objective is to ensure that a system’s security goals have been achieved before the product is released. Finally undertaking final security review is important because it provides comprehensive security analysis ensuring that the security implementations are applied accordingly during the deployment process without missing anything.
Question 3
Answer
The elements of a given system that requires monitoring when the system goes lives are the final security reviews and incident response plans. This is because incident response plans ensure that an organization already have a plan of action in place on how to responds to nay potential security threats or breaches. Final security reviews on the other hand ensures that conduct period system reviews are conducted thus ensuring that any emerging system flaws are detected in good time before attackers can capitalize on them
Question 4
Answer
Periodic system review is very beneficial for its security especially given the fact that improved security threats have been evolving constantly making modern systems more vulnerable. In situations where an organization is expanding or adopting new systems and technology, the administrators are likely to be unaware of any emerging flaws from these changes. As such, it is very important to conduct period system reviews because it ensures that any emerging system flaws are detected in good time before attackers can capitalize on them.
Question 5
Answer
Evolving attack tools tend to put an organization’s system under vulnerable states. In order to recover from this vulnerable state, an organization’s security personnel need to undertake continues education touching on the threats and the tools that can be applied to mitigate these vulnerabilities. Under these circumstances, period security reviews have an important role to play in determining the overall state of security of a given system.

Question 6
Answer
One of the weakest links in any origination’s security design tends to be its workforce or personnel. Based on the randomness and unpredictable nature of humans, people are often prone to making errors out of carelessness or accidents. For this reason, training personnel should be a crucial ongoing process in any organization’s security plan.
Question 7
Answer
Insiders pose a huge security threat to any organization mainly because they have access to some confidential information about the organization which can be used to launch attacks if it falls in the wrong hand. For example, in situations where some employees are unhappy with an organization, they can easily leak some confidential information such as passwords to attackers with the aim of exerting revenge or to punish the organization.
Question 8
Answer
Social engineering attacks can be hard to prevent in any organization especially those with a huge workforce. This is because attackers using social engineering tactics like phishing often use very unsuspecting methods that some members in the organization may not be able to detect. Moreover, organizations with large work forces are likely to fall victims to these types of attacks because the more the personnel involved in an organization, the greater the risks of them making errors that can result in attackers exploiting them.
Question 9
Answer
The three main outcomes an organization should aim to achieve by establishing a security training program is to ensure that the security personnel at the organization are well informed of the existing and emerging security threat which improves on their alertness. Secondly, security training programs institutes proactive practices in any organization ensuring that employees are able to put in place measures that prevent attacks from happening instead of responding to attacks that have already happened because it can be very expensive. Finally, it ensures that the downtime in any organization is also minimized because security threats have been minimized.
Question 10
Answer
An organization’s security awareness training should include three main items namely, data management, removable media and safe internet habits. The three items are important because most security breaches begin with poor data management practices where attackers capitalize on such failures. Sometimes employees in any organization carry with them removable media such as flash disks which contain an organization’s sensitive information. A security awareness training program should educate them on how to handle such devices. Finally, having the right internet behavior will ensures that an organization’s personnel are not prone to regular attacks due to their online activities.

Order | Check Discount