Day 33 - Working with Management to Improve Processes

Published: 2008-11-02
Last Updated: 2008-11-03 15:34:53 UTC
by Mari Nichols (Version: 1)
0 comment(s)

We all understand that management level people are not normally involved with Incident Handling and may want to place the blame somewhere.  As professionals we need to keep management focused on the issue of exactly how the incident happened and use the opportunity to impress upon them the need for enhanced security.  This is your time to push for funding to fix your processes, technology and obtain improve incident handling capabilities.

One good method is to utilize visual aids to break down exactly what happened.  Using visual aids to demonstrate the incident will increase your chances that non-technical management will understand exactly what happened and to see where the weaknesses are in the system.  Once they understand the weaknesses in the system they are more likely to approve the funding to fix it.

If you have special ways you work with management, please contact us and let us know.

Mari Nichols    iMarSolutions

0 comment(s)

Daylight saving time

Published: 2008-11-02
Last Updated: 2008-11-02 15:11:57 UTC
by Adrien de Beaupre (Version: 1)
0 comment(s)

Check your watch, clocks, and time sources. Depending on your location you maye have lost gained (fell back?)an hour today as daylight saving time ended for North America and some other regions. Most modern devices and Operating Systems should have either had a patch or time zone update and adjusted themselves. Those that didn't, either egnore the change, or changed back early under the old schedule. For organizations that set all critical system to Zulu (UTC), carry on then. Devices that can't easily be changed, such as embedded systems, or systems that are never patched, can we say SCADA, mitigate or adjust accordingly. Pay particular attention to logs emmediately before and after the change.

Adrien de Beaupré


0 comment(s)


Diary Archives