CISM course - 2022 update - Item not found in the ZIP show notes...
-
I have been working through Adam Gordon's ISACA CISM course. Maybe I'm missing something but I can't seem to find the document entitled, Roles & responsibilities of IRT personnel.docx. I've looked through the show notes zipped files (isaca-cism-2022-update) but it doesn't seem to be there.
Am I looking in the wrong place?
Thanks,
Steve -
It doesn't look as if we have a copy if it. So it might be that a copy of it was lost or it didn't exist in what we had when we updated the course. Adam has moved on to another organization.
-
Thanks for the response, Ronnie. That's a bit disppointing because Adam emphasized the importance of that particular document for passing the exam.
-
I searched on our end. I couldn't find any document on our end with that name.
-
I just watched the episode. The note he is referring is in the
Notes
pane and in the zip file you mention. It's not titled as you have it. It is:isaca-cism-1-4-1-organizational-structures-roles-and-responsibilities.pdf
-
Thanks, Ronnie. Which episode are you referring to that you found it. I was seeing this in show notes from Domain 4 and the pdf doc you are referencing is from Domain 1. It's the possible they have the same information but I wanted to be sure.
-
Hi Ronnie, I think I found what I needed through ChatGPT.
ISACA, a global professional association for IT governance, risk management, and cybersecurity, provides guidance on the roles within an Incident Response Team (IRT) in its publication "Incident Response and Recovery." According to ISACA, the key roles within an IRT include:
Incident Commander: The leader who is responsible for overall coordination and decision-making during an incident.
IT Operations Staff: Technical experts responsible for managing and mitigating the incident, such as system administrators and network engineers.
Cybersecurity Specialists: Experts in cybersecurity who focus on identifying and containing security incidents.
Legal and Compliance Specialists: Professionals who ensure that the organization's response aligns with legal and regulatory requirements.
Communications and Public Relations: Responsible for managing communication with internal and external stakeholders, including the media.
Human Resources and Employee Relations: Manages the HR aspects of the incident, such as notifying employees and providing support.
Business Continuity and Disaster Recovery Specialists: Ensures that critical business functions continue during and after an incident.
External Resources: May include external incident response consultants, legal counsel, or law enforcement when necessary.
These roles work together to effectively respond to and recover from security incidents
-
Hi @Steve-Scott ,
You are correct. Those are the key roles. Important to understand who the Incident Commander is and at least have an overall idea of what the other roles might perform in the event of an incident. ISACA likes to ask questions around the "primary" role in all of its certs. Good luck!
-
Thanks, Chris!