Critical Thinking Activity: Module 05 Flashcards
From what you know of the company so far, what various constituencies will the CSIRT serve?
To protect and have a Incident Response plan team. (IRPT)
Will the company need to hire more employees to meet the needs of the CSIRT, or would you suggest it outsource some of that effort? What do you think should be the factors that influence the decision to outsource incident response operations?
When outsourcing you want it to be done quickly. When your outsourcing you don’t need to worry about training because the team of another company would be already trained. It seems to me that HAL’s has time to spare to find, hire, and train qualified people for a CSIRT or IRPT for any further attacks.
Ethical Decision Making
Thinking back to the opening scenario, suppose Brody had been the person responsible for the internal Webbased attack against the branch offices. Was he trying to set up a situation where he could make himself look good? Because there was no real harm done and he was careful not to damage production systems, was his action ethical? Why or why not?
making yourself look good to anyone let alone your boss is something that shouldn’t be forced. ethically speaking I feel it could be seen as vary selfish or smug.
Ethical Decision Making
Suppose the sequence of events described in the scenario was part of a penetration test by an outside contract assessment team. The test was authorized by Nick’s superiors without advising Nick or his team. Do you think this is an appropriate way to test the company’s readiness? Why or why not?
Doing drills or testing a system without the acknowledgement of other parties could be seen as being mean, it would get a real response from any IRPT you have but it could also add unintended stressors to an IRPT that wasn’t necessary. if you want an real response from an IRPT team you could do a “fake attack” and tell them after that it was fake.
