Paul Shaw

ITS 370

Chapter 12

Exercises

1.    Search the web for the Forum of Incident Response and Security Teams (FIRST). In your own words, what is the forumís mission?

FIRST is about keeping people around the globe on top of issues and allowing members to help each other be the best they can be security wise. At least thatís what it seems like.

2.    Search the web for two or more sites that discuss the ongoing responsibilities of the security manager. What other components of security management can be adapted for use in the security management model?

Things managers do that can be added to the security management model could be the way they hire underlings to support them in their job.

Discussion Questions

1.    What area of the SP 800-100 management maintenance model addresses the actions of the content filter described here?

In their SDLC section, the program would be in the continuous monitoring section under the Operations/maintenance Phase.

2.    What recommendations would you give SLS for how it might select a security management maintenance model?

We spent the whole book learning how they set up their new systems, I donít know what else to recommend aside from continuing the upkeep of internal maintenance.

Ethical Decision Making

†††††††† Do you think this kind of action is unethical because Charlie knows he is leaving soon?

†††††††††††††††† While not unethical, I think that itís a major jerk move and will leave his replacement or higher up stuck dealing with the mess he left Iris in.