Discussion Learning Objectives: The objective of this discussion is to map out the response to security violations and how to plan for the inevitable actions resulting from security violations. Also, we will study the Microsoft tools that are available to collect information and manage a response process. Finally, we will learn the right way go collect and protect evidence that is admissible in the court. Your task in this lesson will be to discuss the following:
DQ1. Discuss the best practice to handle the security incident in an organization.
DQ2. Discuss two or three functions of the Computer security incident response team (CSIRT).
Note: All discussions must adhere to APA 6th or 7th edition format.
