Assignment: Investigating and Responding to Cyber Crime Incidents Report
The United States National Institute of Standards and Technology (NIST) is a recognized authority for providing security standards, guidelines, and procedures. NIST provides a large array of other security-related documents which are of great value to information security professionals.
For this assignment, you will review a brief scenario and write a 4- to 5-page report, which will consist of a memo to management and an incident response plan. You will use NIST SP 800-61 Revision 2 document for creating an incident plan.
Scenario
Unified Manufacturing and Engineering is a manufacturer and supplier of widgets across the continental United States. Recently, the company has laid off several employees, which left many in the company in a disgruntled state. Now, the information technology (IT) staff has reported to management a significant spike in network attacks numbering in the thousands. Reports from the intrusion detection system indicate that two of these potential attacks may have compromised highly classified plans for a new prototype widget, which is expected to revolutionize the market. IT staff suspects that the attacks and potential security breach may have something to do with the recently laid off staff.
Tasks:
Write a 4- to 5-page report that addresses the following aspects:
Part I: Memo
• Prepare a memo to management regarding the security breach (approximately 2 pages). Your memo should:
o Describe the security breach.
o Assess and explain the expected plan of action of how the security breaches should be investigated.
o Outline all the steps that should occur at each phase of the investigation.
Part II: Incident Plan
• Download the NIST SP 800-61 Rev. 2 and refer to Section 3 on page 21.
https://dx.doi.org/10.6028/NIST.SP.800-61r2
• Prepare an incident response plan (approximately 2-3 pages) that includes:
o A description of the specific measures that would be taken to investigate a security breach
o An explanation of steps taken for prevention to secure the company's information systems
Your final deliverable will be in a Microsoft Word document approximately 4-5 pages in length and utilize at least two scholarly/professional sources (beyond the textbook and the referenced NIST document) in your research. Your paper should be written in a clear, concise, and organized manner, demonstrate ethical scholarship in accurate representation and attribution of sources, and display accurate spelling, grammar, and punctuation.