Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Security Staff

from [CERT CSIRT Development Team] Network Security [Permanent Link]
Subject: Re: Security Staff
Date: Thu, 18 Nov 2004 15:23:18 -0500 
Hello Margarita,

Thank you for your email:

--On Thursday, 18 November, 2004 14:57 -0300 "\"Weigel Muñoz, Margarita\"" 
<mmunioz@metrovias.com.ar> wrote:


Hello at all
 
I have been tasked to define the Security staff area, roles and personal and
tenchnical skills

Have you know about some papers or links to find this type of informations?


Yes.

If you haven't looked at the CSIRT Development pages on our web site already,
you may be interested in the following (which focus more on computer security
incident handling staff than general security staff):

 "Staffing Your Computer Security Incident Response Team ? What Basic Skills 
Are Needed?"
 <http://www.cert.org/csirts/csirt-staffing.html>

 "Computer Security Incident Response Team (CSIRT) Frequently Asked Questions 
(FAQ)"
 <http://www.cert.org/csirts/csirt_faq.html>
 see question 13. Who works in a CSIRT?
 <http://www.cert.org/csirts/csirt_faq.html#13>
 and 14. What type of CSIRT training is required?
 <http://www.cert.org/csirts/csirt_faq.html#14>

 Handbook for Computer Security Incident Response Teams (CSIRTs), Second Edition
 <http://www.cert.org/archive/pdf/csirt-handbook.pdf>
 (see section 4.5 Staff Issues)

 State of the Practice of Computer Security Incident Response Teams (CSIRTs)
 <http://www.cert.org/archive/pdf/03tr001.pdf>
 (see section 3.5 Staffing)

And the following handbook and report may give you some other ideas in
defining your security staff roles:

 Organizational Models for Computer Security Incident Response Teams (CSIRTs)
 <http://www.cert.org/archive/pdf/03hb001.pdf>

 Defining Incident Management Processes for CSIRTs: A Work in Progress
 <http://www.cert.org/archive/pdf/04tr015.pdf>

The above publications, plus a number of other documented resources for
CSIRTs, are available through links on our Resources for CSIRTs web page,
<http://www.cert.org/csirts/resources.html>.

Best regards,
Mark Zajicek

CERT® CSIRT Development Team <http://www.cert.org/csirts/>
Software Engineering Institute <http://www.sei.cmu.edu/>
Carnegie Mellon University <http://www.cmu.edu/>
Pittsburgh PA 15213-3890


---------- Original Message ----------
Date: Thursday, 18 November, 2004 14:57 -0300
From: "\"Weigel Muñoz, Margarita\"" <mmunioz@metrovias.com.ar>
To: "'csirt-info@cert.org'" <csirt-info@cert.org>, 
security-management@securityfocus.com
Subject: Security Staff

Hello at all
 
I have been tasked to define the Security staff area, roles and personal and
tenchnical skills

Have you know about some papers or links to find this type of informations?

Thanks

Lic. Margarita Weigel Muñoz<?xml:namespace prefix = o ns =
"urn:schemas-microsoft-com:office:office" />

Seguridad de la información

Gerencia de Calidad, Control Interno y Seguridad

Metrovías S.A.

Calidad Certificada ISO 9001-2000

Tel: +54 (11) 4959-6800 Int.6067

Email: mmunioz@metrovias.com.ar

Visite nuestros sitios en Internet:

www.metrovias.com.ar

www.subte.com.ar

 


El contenido de este mail y cualquier archivo adjunto son confidenciales.
Está dirigido solo a los destinatarios. Cualquier divulgación, distribución
o copia de esta comunicación o cualquiera de sus contenidos está prohibida.
Si Ud. ha recibido este mail por error por favor reenvíelo al remitente
inmediatamente, borre el original y cualquier copia que resida en su
computadora.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Designing a Security Operations Center ? Looking for Ideas -, Murtland, Jerry
Next by Date:  RE: Security Staff, Keith Pachulski
Previous by Thread:  Security Staff, "Weigel Muñoz, Margarita"
Next by Thread:  RE: Security Staff, Keith Pachulski
Indexes:  [Date] [Thread] [Top] [All Lists]