ISACA CISM – Domain 04 – Information Security Incident Management Part 6

31. Audits Now, don’t be afraid of audits. Audits are an important aspect of what we should be doing. And by the way, I look at audits as being proactive. Now, again, we can do internal audits where we have our inhouse experts, people that work for the organization that try to go past the… Read More »

ISACA CISM – Domain 04 – Information Security Incident Management Part 5

27. Personnel All right, let’s take a look at the personnel for our incident management team. So I’ll call that the IMT. As you can see it down here. So here’s the thing. This shouldn’t be a temporary position. If we’re going to have a management team, those members, as I said, should be permanent… Read More »

ISACA CISM – Domain 04 – Information Security Incident Management Part 4

20. Responsibilities Part1 When we talk about responsibilities, there’s usually, I guess you could say, a number of incident management responsibilities that we have to undertake and one of those and again the security manager might be tasked with having to get this set up. But one of them starts off with just saying that… Read More »

ISACA CISM – Domain 04 – Information Security Incident Management Part 3

12. Outcomes of Incident Management So we have some outcomes that we want from incident management. Now when we do talk about incident management that as a term includes having this incident response and that’s an important part of that. The incident response is really in many ways a variety of activities that we want… Read More »

ISACA CISM – Domain 04 – Information Security Incident Management Part 2

7. Goals of Incident Management Part2 I hope in many ways. I’ve already talked about the goals then of incident management. And a part of the goal. And this is, by the way, going to be coming from your business impact assessment or analysis, from your risk assessment or analysis studies that you do, is… Read More »

ISACA CISM – Domain 04 – Information Security Incident Management Part 1

1. Lesson 1: Incident Management Overview Part1 Now in this domain, we’re going to take a look at the information security incident management. And what we’re going to do is we’re going to talk a lot about the different parts of incident management. First as an overview of what it is, it’s organization, the resources… Read More »

CompTIA Network+ N10-008 – Module: Examining Best Practices for Network Administration Part 6

12. 16.11 Documentation In this video, let’s discuss some of the different documentation that we should maintain. First up is a privileged user agreement. This says what users are, specifically, what positions that those users hold, what permissions do they have, can they view something? Can they modify something? Can they not view something? These… Read More »

CompTIA Network+ N10-008 – Module: Examining Best Practices for Network Administration Part 5

10. 16.9 Disaster Recovery Disaster recovery refers to the ability to have a network and a group of servers up and operational. If some sort of a disaster occurs, maybe there’s an earthquake and it destroys an enterprise’s data center, or maybe there’s some sort of a fire or flooding. How do we restore when… Read More »

CompTIA Network+ N10-008 – Module: Examining Best Practices for Network Administration Part 4

7. 16.6 High Availability One of the main goals of a network design is for that network to be up. We want there to be very high uptime. A lot of companies will suffer financially in a potentially massive way if the network is down for an extended period of time. The gold standard for… Read More »

CompTIA Network+ N10-008 – Module: Examining Best Practices for Network Administration Part 3

5. 16.4 Rack Management Usually in a data center or equipment room. We have servers and routers and switches mounted in racks. And in this video, we want to talk about some of the different rack options that we might have. We want to talk about how we can arrange the racks for proper ventilation.… Read More »