When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
Creating a secondary authentication process for network access would be an example of?
The ability to hold intruders accountable in a court of law is important. Which of the following activities are needed to ensure the highest possibility for successful prosecution?
SCENARIO: Critical servers show signs of erratic behavior within your organization's intranet. Initial information indicates the systems are under attack from an outside entity. As the Chief Information Security Officer (CISO), you decide to deploy the Incident Response Team (IRT) to determine the details of this incident and take action according to the information available to the team.
During initial investigation, the team suspects criminal activity but cannot initially prove or disprove illegal actions. What is the MOST critical aspect of the team's activities?
The process for management approval of the security certification process which states the risks and mitigation of such risks of a given IT system is called___________________.
