Security

ISO-27001-Annex-A.16.1.2-Reporting-Information-Security-Events

ISO 27001 Annex : A.16.1.2 Reporting Information Security Events, A.16.1.3 Reporting Information Security Weaknesses & A.16.1.4 Assessment of and Decision on Information Security Events

Leave a Comment / ISO 27001 La, Knowledge Base / By

In this article explain ISO 27001 Annex : A.16.1.2 Reporting Information Security Events, A.16.1.3 Reporting Information Security Weaknesses & A.16.1.4 Assessment of and Decision on Information Security Events this contols. A.16.1.2 Reporting Information Security Events Control- Information security incidents should be reported as quickly as possible through appropriate management channels. Implementation Guidance- Both employees and contractors will be made aware of their responsibility as soon as possible for reporting security incidents. The reporting protocols and …

ISO 27001 Annex : A.16.1.2 Reporting Information Security Events, A.16.1.3 Reporting Information Security Weaknesses & A.16.1.4 Assessment of and Decision on Information Security Events Read More »

ISO-27001-Annex-A.16-Information-Security-Incident-Management

ISO 27001 Annex : A.16 Information Security Incident Management

Leave a Comment / ISO 27001 La, Knowledge Base / By

ISO 27001 Annex : A.16 Information Security Incident Management in this aerticle explain Management of Information Security Incidents and Improvements and there Responsibilities & Procedures. A.16.1 Management of Information Security Incidents and Improvements It’s objective is to ensure a clear and successful strategy, including communication on security incidents and vulnerabilities, for information security incidents management. A.16.1.1 Responsibilities and Procedures Control- In order to ensure a quick, efficient, and organized response to ISO 27001 Annex : …

ISO 27001 Annex : A.16 Information Security Incident Management Read More »

ISO-27001-Annex-A.15.2-Supplier-Service-Delivery-Management

ISO 27001 Annex : A.15.2 Supplier Service Delivery Management

Leave a Comment / ISO 27001 La, Knowledge Base / By

ISO 27001 Annex : A.15.2 Supplier Service Delivery Management It’s objective is to maintain, in compliance with supplier agreements, an agreed level of information security and delivery of service. A.15.2.1  Monitoring and Review of Supplier Services Control- Organizations shall monitor, review and audit the provision of service to suppliers on a regular basis. Implementation Guidance – Monitoring and review of supplier services will ensure respect for the terms and conditions of information security of the …

ISO 27001 Annex : A.15.2 Supplier Service Delivery Management Read More »

ISO-27001-Annex-A.15.1.2-Addressing-Security-Within-Supplier-Agreements

ISO 27001 Annex : A.15.1.2 Addressing Security Within Supplier Agreements & A.15.1.3 Information and Communication Technology Supply Chain

Leave a Comment / ISO 27001 La, Knowledge Base / By

In this article explain ISO 27001 Annex : A.15.1.2 Addressing Security Within Supplier Agreements & A.15.1.3 Information and Communication Technology Supply Chain this controls. A.15.1.2  Addressing Security Within Supplier Agreements Control- Any suppliers that view, process, store, communicate or provide IT infrastructure component information for the organization should be defined and agreed with all applicable information security requirements. Implementation Guidance- Supplier agreements should be defined and recorded so that the organization and the supplier do …

ISO 27001 Annex : A.15.1.2 Addressing Security Within Supplier Agreements & A.15.1.3 Information and Communication Technology Supply Chain Read More »

ISO 27001 Annex : A.15 Supplier Relationships

Leave a Comment / ISO 27001 La, Knowledge Base / By

ISO 27001 Annex : A.15 Supplier Relationships in this article explaining Information Security in Supplier Relationships, and there policies . A.15.1  Information Security in Supplier Relationships It’s objective is ensuring the security of assets accessible to suppliers of the organization. A.15.1.1  Information Security Policy for Supplier Relationships Control- The supplier should be agreed with and documented information security requirements related to the risk mitigation of access by suppliers to organizational assets. “The company becomes more …

ISO 27001 Annex : A.15 Supplier Relationships Read More »

Evidence-Locker-Recommendations

Evidence Locker Recommendations

Leave a Comment / CHFI / By

The Evidence Locker Recommendations are the evidence storage devices and need protection from unauthorized access by using high-quality padlocks and performing routine inspection to check the content of the evidence lockers, Recommendations for securing evidence lockers: Place these containers in restricted areas, which are only accessible to lab officers. A minimum number of authorized people should be able to access the evidence. Keep records about the people authorized to access the container. Close all the …

Evidence Locker Recommendations Read More »

The-fall-of-security-questions-or-password-reset-question

The fall of security questions or password reset question

Leave a Comment / CEH, Knowledge Base / By

The fall of security questions or password reset question based on this topic article is written basically security this very important from anywhere and any field also for maintaining security we create the password but some time it happens to forgot  password at that time there should be some questions to maintain security zone once asked question would be right then and then only that particular user can create a new password. I think we’ve …

The fall of security questions or password reset question Read More »

Physical-Security-Recommendations

Physical Security Recommendations of Computer Forensics Lab

Leave a Comment / CHFI, Knowledge Base / By

Physical Security Recommendations in the level of physical security required for a forensics lab depends on the nature of investigations performed in the lab. The assessment of risk for a forensics lab varies from organization to organization. If the organization is a regional forensics lab, then the assessed risk is high as the tabs deal with multiple cases and different types of evidence. This may not be true for the forensics lab of a private …

Physical Security Recommendations of Computer Forensics Lab Read More »

Physical-Location-and-Structural-Design-Considerations

Physical Location and Structural Design Considerations of Computer Forensics Lab

Leave a Comment / CHFI / By

Physical Location and Structural Design Considerations in this article explain how to design & structure forensic lab and where should be physically located . Physical Location Needs of a Forensics Lab The physical location needs of a forensics lab are Site of the lab: The site should have at least two directions of entry to ensure that one can access the lab despite heavy traffic conditions, street maintenance work, or any unexpected site disruptions. Access …

Physical Location and Structural Design Considerations of Computer Forensics Lab Read More »

Forensics-Readiness

What is Forensics Readiness?

Leave a Comment / CHFI / By

Forensics Readiness refers to an organization’s ability to form optimal use of digital evidence during a limited period of your time and with minimal investigation costs. It includes technical and nontechnical actions that maximize an organization’s competence to use digital evidence. Forensic readiness includes the establishment of specific incident response procedures and designated trained personnel to handle the procedures just in case of a breach. It enables a corporation to gather and preserve digital evidence …

What is Forensics Readiness? Read More »