首页> 外文OA文献 >Developing a Metrics Framework for the Federal Government in Computer Security Incident Response
【2h】

Developing a Metrics Framework for the Federal Government in Computer Security Incident Response

机译:为联邦政府在计算机安全事件响应中制定度量标准框架

代理获取
本网站仅为用户提供外文OA文献查询和代理获取服务,本网站没有原文。下单后我们将采用程序或人工为您竭诚获取高质量的原文,但由于OA文献来源多样且变更频繁,仍可能出现获取不到、文献不完整或与标题不符等情况,如果获取不到我们将提供退款服务。请知悉。

摘要

As technology advances and society becomes more dependent on information technology (IT), the exposure to vulnerabilities and threats increases. These threats pertain to industry as well as government information systems. There is, however, a lack in how we measure the performance and create accountability for computer security incident response (CSIR) capabilities. Many government organizations still struggle to determine what security metrics to use and how to find value within these metrics. To fill this apparent gap, a metrics framework has been developed for incident response to serve as an internal analysis, supporting continuous improvement in incident reporting and strengthening the security posture for an organization’s mission. The goal of this metrics framework for CSIR aims to provide a holistic approach towards security metrics, which is specific to incident reporting and promotes efforts of more practical and clear guidelines on measuring the computer security incident response team (CSIRT). An additional benefit to this project is that it provides middle management with a framework for measuring the results of incident reporting in a CSIR program.
机译:随着技术的进步以及社会对信息技术(IT)的依赖性越来越高,暴露于漏洞和威胁的可能性也在增加。这些威胁涉及行业以及政府信息系统。但是,在我们如何评估性能以及如何建立计算机安全事件响应(CSIR)功能的责任制方面存在不足。许多政府组织仍在努力确定要使用哪些安全度量以及如何在这些度量中找到价值。为了填补这一明显的空白,已经开发了用于事件响应的度量框架,以作为内部分析,支持对事件报告的持续改进并增强组织任务的安全状况。 CSIR的此度量标准框架的目标旨在提供一种针对安全度量的整体方法,该方法特定于事件报告,并促进在测量计算机安全事件响应团队(CSIRT)方面更加实用和清晰的指南。该项目的另一个好处是,它为中层管理人员提供了一个框架,用于衡量CSIR计划中事件报告的结果。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号