1answer.
Ask question
Login Signup
Ask question
All categories
  • English
  • Mathematics
  • Social Studies
  • Business
  • History
  • Health
  • Geography
  • Biology
  • Physics
  • Chemistry
  • Computers and Technology
  • Arts
  • World Languages
  • Spanish
  • French
  • German
  • Advanced Placement (AP)
  • SAT
  • Medicine
  • Law
  • Engineering
bogdanovich [222]
2 years ago
13

Rom what you know of the company so far, what will be among the variousconstituencies that the CSIRT will serve?

Business
1 answer:
son4ous [18]2 years ago
3 0

The question is incomplete, Below is the complete question.

Brody had been enjoying a nice, calm shift in HAL's network operations center. The calmness of the evening was interrupted, however, when a pop-up notification appeared on his monitor. The NIDS had detected malicious traffic on a brance network in Tuscaloosa, Alabama, specifically targeting the branch Web server. As Brody picked up the telephone to contact the on-call network tech for that office, the NIDS displayed another pop-up notification, this time reporting malicious traffic on a branch network in Mobile. In short order, it also displayed notifications for branches in Athens, Columbia, Auburn, and Starkville. Even more alarming, the NIDS indicated that the traffic was all coming from other branches within the company.

Brody immediately recognized that this was different from the typical attacks he'd seen in his time with the company and decided to call his boss, Nick Shula. It was 3:30 AM when he made the call.

"Hello?" said Shula, groggy with sleep.

"Boss, it's Brody," Brody said. "Sorry to be calling like this, but i think we've got a problemm. The NIDS is showing that Web servers in multiple branch offices are under attack, and the traffic is coming from inside our network. What do you want me to do?"

Shula, suddenly awake, thought back to the proposal that was sitting on his desk, concerning the creation of an incident response team for the company. Shula had een so busy with other things that he hadn't been able to consider the proposal at all. Mentally kicking himself, he muttered into the phone, "Why didn't I look at that proposal?"

"What was that, boss?" Brody said.

"Never mind," Shula said. He had to think quickly in order to guide Brody through the situation. "Call the firewall guy on duty," he said, "and have him put in a temporary rule on the DMZ firewall to block all inbound traffic to the Web servers from internal IP addresses." After all, it was the middle of the night, and very few, if any, employees would be doing any work that involved the Web servers. Shula figured he would jsut get up a little early and have the rule removed before normal working hours; hopefully, by then the attack would have stopped.

"OK boss, will do. Get back to sleep, now," Brody said.

Shula headed back to bed, thinking everything was OK. But as soon as his eyes closed, the phone rang again. He took a look at the caller ID and blanched. It was Mal Bryant,, the company CEO.

"Nick, it's Mal," Mal said. "Listen, I'm in Belgium and attached to the corporate network via the VPN. For some reason, I can't get to our internal Web server. You have ny idea what's going on?"

Shula sighed as he realized it was going to be a long night...

Two weeks later, Brody got an e-mail from Nick Shula inviting him to attend a meeting during the day shift later in the week. The meeting was being called to discuss the formation fo the company's new CSIRT.

Brody would be one of the employees identified to perform specific actions when events became incidents and the response plans were activated. As a front-line watch stander in the network operations center, Brody would play a critical role. In addition to his role as a key memeber of the response team, Brody was going to be invited to help develop the plans and procedures and would then be trained in how to be a first responder.

Discussion Questions:

A) From what you know of the company so far, what will be among the various constituencies that the CSIRT will serve?

B) Will the company need to hire more employees to meet the needs of the CSIRT, or would you suggest it outsource some of that effort?

ANSWER;

A) When we talk of CSIRT, it typically mean computer security incident response team.

It will actually help employees report,discuss and disseminate information as it regards computer security related information across the entire organization and it's various verticals.

CSIRT will actually help in timely response that is 24/7 and a coordinated effort in the handling of incident.

The department of information technology and other departments to that are partly or heavily making use of it's systems would actually be the ones typically affected by the formation of this body.

B) For CSIRT to be efficiently constructed,the organization should also outsource the work initially in majority.

However,in the later stages, once the employees are well trained,the company can then build upon it as in house department much more effectively and efficiently.

Also,the company should have at least a part of the work outsourced to have access continuously to the respective systems at all times. This will be required mainly because information security is a fast moving technology and the company as well as it's employees need to be updated regularly and also informed of external threats.

You might be interested in
Every year, Shawna Stuart, the Director of Sustainability at Academic University, sees students throwing away perfectly good fur
lawyer [7]

Answer:

1. The question that you should ask during the development of strategic goals for the organization is:

a. Should our company focus more on giving things away, or on selling things for a reduced price to those in need?

2. The time-frame that the group should consider for this plan is:

b. Long-term (Five years or more)

Explanation:

A strategic plan is made up of the organization's mission, vision, and values, as well as its long-term goals.  These are backed up with the action plans for attaining the long-term goals.  A strategic plan should involve the whole of the organization and remain futuristic.  It does not concentrate on short-term objectives.  Instead, a strategic plan concentrates on long-term goals with its duration period lasting five years or more.

8 0
2 years ago
Which of the following is an example of a content management system (CMS)?
Grace [21]

Some examples of a content management system (CMS) are:

  • WordPress,
  • Joomla,
  • Drupal,  
  • Wix,
  • Ghost.

<h3>What is content management system?</h3>

This refers to the software that helps users create, manage, and modify content on a website without having to code.

Hence, we can see that Some examples of a content management system (CMS) are:

  • WordPress,
  • Joomla,
  • Drupal,  
  • Wix,
  • Ghost.

Read more about content management system here:

brainly.com/question/15077884

#SPJ1

4 0
1 year ago
Which of the following statements represent the appropriate directional relationships between the concepts of inherent risk, con
luda_lava [24]

Answer:

b. As inherent risk goes up, audit risk goes down.

Explanation:

Inherent risk is the risk which is present before applying any control, and audit risk is the that the auditor expresses inappropiate audit opinion when the financial statements are materialy misstated.

Thus, when the inherent risk is <em>high</em>, the auditor keeps the audit risk at <em>low </em>level to perform more subtantative procedures.

8 0
2 years ago
How do you redeem a <br> lottery tickets
DENIUS [597]

Explanation:

you can redeem a winning ticket from any type of lottery game to an authorized retailer when your prize is less than 600$

hope I helped

4 0
2 years ago
Suppose you read a news article reporting that your local government has denied a request by an entrepreneur to build a new coff
finlep [7]

Answer:

Yes, I would support the denial because rules and regulations apply to everyone, and that includes businesses. Zoning rules exist in real estate to make sure that some areas or neighborhoods are used for certain specific purposes, e.g. residential areas, industrial areas or commercial areas. If those rules regulations didn't exist, it would be a complete mess and anyone could just set a factory besides a condo or a school. Either everyone follows the rules or no one does.

Explanation:

3 0
2 years ago
Other questions:
  • Blossom Inc. Nash Inc. Smith Inc. Beginning inventory $400 $100 (g) $enter a dollar amount 5300 Purchases 1,600 1,080 43,000 Pur
    7·1 answer
  • Spring is here, and Ginny and her uncle would like to go fishing for the weekend in New Hampshire. Ginny could either go to the
    5·1 answer
  • According to the information provided in english 120, why might a subject encyclopedia be useful to start a research project?
    11·1 answer
  • Suppose that the state of Massachusetts enacts a law that forbids Mexico and businesses located in that country from doing busin
    13·1 answer
  • Samir is a self-employed marketing consultant. He had no income from January through March 2020. His April through December 2020
    14·1 answer
  • Applicants who test positive for illegal drug use can be screened out of a job immediately.
    15·2 answers
  • Tzunam Corp. is preparing its cash budget. It expects to have sales of $30,000 in January, $35,000 in February, and $30,000 in M
    10·1 answer
  • When deciding on an office layout, a business or organization has to consider all of the following except:
    5·1 answer
  • A retailer has noticed that his cost of goods from a specific supplier always seem to be increasing—affecting the gross profit o
    13·1 answer
  • According to Adam Smith, a country has an absolute advantage in the production of a product when it _____.
    5·1 answer
Add answer
Login
Not registered? Fast signup
Signup
Login Signup
Ask question!