Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

Incident Management

Welcome to the Incident Management topic!

Collaborate, contribute, consume and create knowledge around topics such as incident response policy, team structure, handling and preventing incidents, detection and analysis, containment, recovery and post activities.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

 
This Topic Has:
452 Members
2 Online
7631 Visits

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer

 

NEW! Activity Badges

Badges help others understand your level of community activity and your reputation as a contributor within the Knowledge Center. Learn More.

Discussions: 17 total

Must be a Topic member to contribute
View All »
Hi, Im contemplating on conducting a remote audit of our service desk since travel may not be necessary. Effective coordination with the auditees is a given Pro, however, I would like to know what are the consequences or other areas that I may miss.
Eric810 | 12/15/2016 1:59:25 AM | COMMENTS(0)
A good discussion is in progress here about: Incident Management vs Problem Managementhttp://www.isaca.org/Groups/Professional-English/cism-exam-study-community-2013/Pages/ViewDiscussion.aspx?PostID=743
-adnan- | 6/23/2016 3:18:44 AM | COMMENTS(3)
Does anyone have (or can point me to) a list of generic security incident use cases? Clearly many will focus on breach of specific security policy statements, acceptable usage, data leakage, etc. as well as more serious breaches etc. A generic list might ...
Phil Green | 2/25/2016 5:23:22 AM | COMMENTS(3)
Just wondering if anyone has every audited an outsourced SIEM service provider and are willing to share experience and audit program. Will soon be auditing Dell's SecureWorks which is the outsourced SIEM service provider. SecureWorks receives Events of ...
James12765 | 2/4/2016 9:18:08 AM | COMMENTS(1)
Hello, does any one have a link to a solid example of an Incident Response Audit Program? I found an ISACA one that's pretty detailed (http://www.isaca.org/knowledge-center/research/researchdeliverables/pages/security-incident-management-audit-assuran...
Jeff Murfin | 1/28/2016 7:45:42 AM | COMMENTS(3)
Within my current assignment I faced with a question: What metrics and KPIs could be established to measure performance of the company's CERT? or may be there could be some kind of SLA which is structured by incidents significance? (e.g. service level...
Maksym Pomerko | 12/23/2015 4:49:35 AM | COMMENTS(2)

Documents & Publications: 7 total

Must be a Topic member to contribute
View All »
White Papers
Posted by ISACA 1018 days ago
Research
Posted by ISACA 1074 days ago
Books
Posted by ISACA 1714 days ago
Chicago – January 24, 2012 – In the wake of 2011, which many analysts are calling the “Year of the Breach,” the Online Trust Alliance (OTA) today announced the release of the 2012 Data Protection & Breach Readiness Guide, a comprehensive guide outlining key questions and recommendations to help businesses in breach prevention and incident management. OTA is unveiling the report today at the 2012 Privacy and Data Protection Town Hall, held in honor of Data Privacy Day. This is the third year the OTA has produced the guide, which provides an analysis of the past year’s security breaches and offers companies a wide range of best practices in data security, privacy and data collection.
Posted by JBenlein 1763 days ago

Events & Online Learning: 1 total

9 Nov 2015
ISACA International Event
Copenhagen, Denmark
Stay on top of the trends and opportunities of the dynamic technology industry at EuroCACS/ISRM —the leading European conference for IT audit, assurance, security and risk professionals.

Journal Articles: 25 total

Volume 5, 2016
by Tom Pendergast, Ph.D.
Despite a wealth of preventive measures, employees remain one of the costliest vectors in a number of data breaches and security incidents, which are increasing at an alarming rate.
Volume 3, 2016
by Teju Oyewole, CISA, CISM, CRISC, COBIT Assessor, CISSP, CSOE, ISO 27001 LA, ITIL, MBCS, PMP
To establish a mature and effective IR process, organizations should focus not only on the technical aspect, but also on human behavior through the situation awareness (SA) theory.
Volume 3, 2016
by Aleksandr Kuznetcov, CISM
This article addresses an existing imbalance between technical issues and process aspects related to SIEM.
Volume 2, 2016
by George Quinlan
Get to know your network.
Volume 2, 2016
by Shubhamangala B. R. and Snehanshu Saha, Ph.D.
Why are breaches continuing despite deploying cutting-edge solutions supported by compliance to thwart the attacks?
Volume 2, 2016
by Sanjiv Agarwala, CISA, CISM, CGEIT, BS 25999/ISO 22301 LA, CISSP, ISO 27001:2013 LA, MBCI
Cybersecurity threats are on the rise. Every organization is connected to one another, and any organization can become the victim of cyberattacks.

Wikis: 2 total

Blog Posts: 2 total

Must be a Topic member to view blog posts
Yesterday’s security technology will not keep your network safe today, nor will today’s solutions protect you tomorrow. Network security must evolve. And at a rate that keeps it always one step ahead of the threats. These could include factors such as you...
Posted By : rasoolirfan | 1 comments
The UK’s Bribery Act 2010 (the Act) which will come into force on 1 July 2011 represents a strengthening of the UK position on bribery and corruption and an important development in global anti-bribery legislation. But what exactly is considered to a brib...
Posted By : Guido2005 | 0 comments