Incident Handling and Response | EDUCAUSE.edu

Main Nav

Browse this Topic

Expand Topic...

< Security Management

EDUCAUSE Library Items for Incident Handling and Response

Showing 1 - 10 of 32 Results

Sort by:

Relevancy | Title | Date

When to Declare an Information Security Incident and How to Respond Once You Do: April 16, 2013 | A session at the Security Professionals Conference
This discussion session will examine the incident response process and apply it to a sanitized version of an actual web server compromise that took place at a real university. After an initial over…
Are You Ready? A Planning Tool for Managing Sensitive Data Incidents: May 16, 2012 | A session at the Security Professionals Conference 2012
Universities have had to deal with many different types of incidents involving the exposure of sensitive and legally protected information. When an incident occurs, those involved usually have limi…
Data Breach Notification: Discussing Reactive Processes and Proactive Strategies: April 5, 2011 | A session at the Security Professionals Conference 2011
Data security and privacy are focal points in many institutions' information security programs. There is a complex set of legal and regulatory frameworks for protecting data that we are entrus…
PaIRS/Bayesian IDS: Finding Bad Actors Without Looking at Content: April 5, 2011 | A session at the Security Professionals Conference 2011
The Columbia PaIRS (point of contact and incident response system) IDS was developed to facilitate the protection of the network from compromised machines, taking into account the totally decentral…
E-Discovery and Fraud/Abuse Details: April 14, 2010 | A session at the Security 2010
The VA Tech IT Security Office has created disk images for e-discovery and internal audit fraud and abuse investigations. This talk discusses the strategies, tools, forms, and procedures the office…
Improving Security Event Correlation and Analysis Using Intelligent Agents: April 22, 2009 | A session at the Security 2009
Attacks on computer resources are security events that are more complex and difficult to quickly and effectively collect, analyze, and respond to. This presentation will explain how the use of inte…
REN-ISAC and CSI2—The Security Event System: April 22, 2009 | A session at the Security 2009
The REN-ISAC in partnership with the Internet2 SALSA CSI2 Working Group has identified clear benefit in the sharing and correlation of security event data among institutions and organizations parti…
Root Compromise: A Spammer Hiding in Plain Sight: April 21, 2009 | A session at the Security 2009
This presentation will walk through an incident where a spammer obtained root on a major departmental server and used it to inject spam material into the site's web pages, as well as describe …
Building a Cybersecurity Operations Center: April 21, 2009 | A session at the Security 2009
Three IT security offices (Virginia Tech, Penn State, and Purdue) are building a cybersecurity operations center (CSOC) that will be the focal point for each institution's campus-wide cybersec…
Out of the Breach and Into the Fire: April 21, 2009 | A session at the Security 2009
The composition of a data breach is complex, particularly the notification process that's now required by law in most states. Universities and colleges have made preparations, but information …

Narrow your focus

Research and Publications

Conferences and Events

Career Development

Focus Areas and Initiatives

Connect and Contribute

About EDUCAUSE