In the fields of computer security and information technology, computer security incident management involves the monitoring and detection of security events on a computer or computer network, and the execution of proper responses to those events. Computer security incident management is a specialized form of incident management, the primary purpose of which is the development of a well understood and predictable response to damaging events and computer intrusions.[1]
Incident management requires a process and a response team which follows this process. In the United States, This definition of computer security incident management follows the standards and definitions described in the National Incident Management System (NIMS). The incident coordinator manages the response to an emergency security incident. In a Natural Disaster or other event requiring response from Emergency services, the incident coordinator would act as a liaison to the emergency services incident manager.[2]
^"ISO 17799|ISO/IEC 17799:2005(E)". Information technology - Security techniques - Code of practice for information security management. ISO copyright office. 2005-06-15. pp. 90–94.
^. National Incident Management System. Department of Homeland Security. 2004-03-01. Archived from the original on 2007-03-18. Retrieved 2007-04-08.
computer, security, incident, management, this, article, needs, additional, citations, verification, please, help, improve, this, article, adding, citations, reliable, sources, unsourced, material, challenged, removed, find, sources, news, newspapers, books, s. This article needs additional citations for verification Please help improve this article by adding citations to reliable sources Unsourced material may be challenged and removed Find sources Computer security incident management news newspapers books scholar JSTOR January 2018 Learn how and when to remove this template message In the fields of computer security and information technology computer security incident management involves the monitoring and detection of security events on a computer or computer network and the execution of proper responses to those events Computer security incident management is a specialized form of incident management the primary purpose of which is the development of a well understood and predictable response to damaging events and computer intrusions 1 Incident management requires a process and a response team which follows this process In the United States This definition of computer security incident management follows the standards and definitions described in the National Incident Management System NIMS The incident coordinator manages the response to an emergency security incident In a Natural Disaster or other event requiring response from Emergency services the incident coordinator would act as a liaison to the emergency services incident manager 2 See also editComputer emergency response team Proactive cyber defenceReferences edit ISO 17799 ISO IEC 17799 2005 E Information technology Security techniques Code of practice for information security management ISO copyright office 2005 06 15 pp 90 94 NIMS The Incident Command System National Incident Management System Department of Homeland Security 2004 03 01 Archived from the original on 2007 03 18 Retrieved 2007 04 08 Further reading editHandbook for Computer Security Incident Response Teams CSIRTs http www sei cmu edu library abstracts reports 03hb002 cfm Retrieved from https en wikipedia org w index php title Computer security incident management amp oldid 1201026782, wikipedia, wiki, book, books, library,
