Project 2: Incident Response
Teams of students will review an organization's incident response policies,
procedures, framework, and roles/responsibilities. They will then analyze
the data to develop an incident response questionnaire and complete an
investigation form as part of the incident response process.
Courses for Implementation:
Incident Response Procedures
NDG Security+ Lab 4
Key Terms/Major Topics:
- Key terms: Incident response, CIRT,
Policies, Incident Response Policies, Incident Response Procedure,
- Technical skills: Analyze the incident
response policy, procedure, and workflow process to develop an incident
response questionnaire to cope with a serious data breach.
- Employability skills:
- Teamwork. Develop interview questions
that determine if the incident should trigger a CIR level investigation.
- Problem solving. Analyze the incident response
policy, procedures and workflow processes to identify questions that can be used to
differentiate a CIR level investigation versus a non-critical investigation.
- Written communications. Write
questions designed to gather relevant qualitative data associated with the incident.
Estimated Time Required: 1-2 hours