Abstract

The article discusses the process of automating the response to information security incidents of the organization. The main stages of automation planning, key points and a sequence of actions for developing a correct response scenario for a certain type of incident are recommended. As an example, the process of building a scenario for responding to a "phishing" incident in accordance with the set of information security solutions defined for the example, which may be available in the organization, is given. The corresponding steps of the response scenario are described in text, plan, and graphic format. A graphic example of the implementation of the developed plan in the SOAR class system is given.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Investigating effects of security incident awareness on information risk perception
Antonio P Volpentesta ... Salvatore Ammirato
International Journal of Technology Management | VOL. 54
Antonio P Volpentesta, et. al.Antonio P Volpentesta ... Salvatore Ammirato
01 Jan 2010
Enhancing Information Security Process in Organisations in Qatar
Aisha Khalid Al-Hamar
-
Aisha Khalid Al-HamarAisha Khalid Al-Hamar
01 Jan 2015
An impact of information security investment on information security incidents
Hansol Lee ... Kyeongwon Yoo
-
Hansol Lee, et. al.Hansol Lee ... Kyeongwon Yoo
01 Jan 2015
Security Operations Centers for Information Security Incident Management
Natalia Miloslavskaya
-
Natalia MiloslavskayaNatalia Miloslavskaya
01 Aug 2016
View more papers

More From: Modern Information Security

Paper Title
Journal
Date
Author
Building an effective network security system of the enterprise based on the method of analyzing hierarchies of quality indicators
V A Savchenko
Modern Information Security | VOL. 57
V A SavchenkoV A Savchenko
01 Jan 2024
Influence of the atmosphere on the spread of laser radiation
Ya R Sovyn
Modern Information Security | VOL. 57
Ya R SovynYa R Sovyn
01 Jan 2024
An improved model of the diffusion of Bass innovations for predicting changes in public opinion during the implementation of a narrative in social networks
V V Rakhimov
Modern Information Security | VOL. 57
V V RakhimovV V Rakhimov
01 Jan 2024
The method of protecting information resources based on the semiotic model of cyberspace
A G Zakharzhevskyy
Modern Information Security | VOL. 57
A G ZakharzhevskyyA G Zakharzhevskyy
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.