Contributed by Organizations or Campuses; Articles, Papers, and Reports; and Security Planning
A Guide to Security Metrics
| Title: | A Guide to Security Metrics (ID: CSD5074) | | Author(s): | Shirley C. Payne (University of Virginia) | | Source: | The SANS Institute | | Origin: | Contributed by Organizations or Campuses (06/22/2006) | | Type: | Articles, Papers, and Reports | | Abstract: | The pressure is on. Various surveys indicate that over the past several years computer security has risen in priority for many organizations. Spending on IT security has increased significantly in certain sectors. As with most concerns that achieve high priority status with executives, computer security is increasingly becoming a focal point not only for investment, but also for scrutiny of return on that investment. In the face of regular, high-profile news reports of serious security breaches, security managers are more than ever before being held accountable for demonstrating effectiveness of their security programs. What means should managers be using to meet this challenge? Some experts believe that key among these should be security metrics. This guide provides a definition of security metrics, explains their value, discusses the difficulties in generating them, and suggests a methodology for building a security metrics program. | | View this resource: | |
Final Report of Emergency Communication Systems for Florida University and Community College Campuses
| Title: | Final Report of Emergency Communication Systems for Florida University and Community College Campuses (ID: CSD4919) | | Author(s): | Lei Wei (University of Central Florida) and Jim Pearson (University of Central Florida) | | Origin: | Contributed by Organizations or Campuses (2006) | | Type: | Articles, Papers, and Reports | | Abstract: | This report studies the current emergency communications system for Florida higher education institutions which do not have PA systems that are similar to the K-12 schools. Universities and Colleges require systems and procedures to rapidly pass critical information in emergency situations to all buildings classrooms, laboratories, and offices to alert students, faculty and staff regarding emergency situations such as a terrorist event, active shooter, bomb threat, hazmat release, or natural event such as tornado. Three important criteria are relevant to campus alert/notification systems: (1) provide an alert to the campus population as quickly as possible; (2) alert and inform the campus population in multiple areas with different instructions that could change rapidly; (3) provide at least a means of basic communications under extreme situations such as a power outage and/or downed telephone service. These criteria must also consider the limitations of the disabled. | | View this resource: | |
Handbook for Computer Security Incident Response Teams (CSIRTs), 2nd edition
| Title: | Handbook for Computer Security Incident Response Teams (CSIRTs), 2nd edition (ID: CSD3847) | | Author(s): | Georgia Killcrece (Carnegie Mellon University), Robin Ruefle (Carnegie Mellon University), and Mark Zajicek (Carnegie Mellon University) | | Source: | Carnegie Mellon Software Engineering Institute | | Origin: | Contributed by Organizations or Campuses (2003) | | Type: | Articles, Papers, and Reports | | Abstract: | This document provides guidance on forming and operating a computer security incident response team (CSIRT). In particular, it helps an organization to define and document the nature and scope of a computer security incident handling service, which is the core service of a CSIRT. The document explains the functions that make up the service; how those functions interrelate; and the tools, procedures, and roles necessary to implement the service. This document also describes how CSIRTs interact with other organizations and how to handle sensitive information. In addition, operational and technical issues are covered, such as equipment, security, and staffing considerations. | | View this resource: | |
State of the Practice of Computer Security Incident Response Teams (CSIRTs)
| Title: | State of the Practice of Computer Security Incident Response Teams (CSIRTs) (ID: CSD3848) | | Author(s): | Georgia Killcrece (Carnegie Mellon University), Robin Ruefle (Carnegie Mellon University), and Mark Zajicek (Carnegie Mellon University) | | Source: | Carnegie Mellon Software Engineering Institute | | Origin: | Contributed by Organizations or Campuses (2003) | | Type: | Articles, Papers, and Reports | | Abstract: | Keeping organizational information assets secure in today's interconnected computing environment is a challenge that becomes more difficult with each new "e" product and each new intruder tool. There is no one solution for securing information assets; instead a multi-layered security strategy is required. One of the layers that many organizations are including in their strategy today is a computer security incident response team, or CSIRT. This report provides an objective study of the state of the practice of incident response, based on information about how CSIRTs around the world are operating. It covers CSIRT services, projects, processes, structures, and literature, as well as training, legal, and operational issues. The report can serve as a resource both to new teams that are setting up their operations and to existing CSIRTs that are interested in benchmarking their operations. | | View this resource: | |
|
