CIS 359 STUDY Extraordinary Success /cis359study.com CIS 359 STUDY Extraordinary Success /cis359study.c | Page 42
CIS 359 Week 6 Assignment 3 Incident Response (IR)
Strategic Decisions
FOR MORE CLASSES VISIT
www.cis359study.com
Assignment 3: Incident Response (IR) Strategic Decisions
Due Week 6 and worth 75 points
Suppose that you have been alerted of a potential incident involving a
suspected worm spreading via buffer overflow techniques,
compromising Microsoft IIS Web servers. As the IR Team leader, it is
your responsibility to determine the next steps.
Write a two to three (2-3) page paper in which you:
Explain in detail the initial steps that would need to be made by you
and the IR team in order to respond to this potential incident.
Construct a process-flow diagram that illustrates the process of
determining the incident containment strategy that would be used in
this scenario, and identify which containment strategy would be
appropriate in this case, through the use of graphical tools in Visio, or
an open source alternative such as Dia. Note: The graphically
depicted solution is not included in the required page length.
Construct a process flow diagram to illustrate the process(es) for
determining if / when notification of the incident should be relayed to
upper management, and explain how those communications should be
structured and relayed through the use of graphical tools in Visio, or
an open source alternative such as Dia. Note: The graphically
depicted solution is not included in the required page length.
Detail the incident recovery processes for the resolution of this
incident.