The manner in which development of a CIRT plan helps adopt a proactive approach to risk management, with recommendations for updating the CIRT plan
Usually, computer systems manufactured today are barely meeting the minimum industry and regulatory compliance levels. This causes so many organizations to becoming more reactive than proactive when they are address cyber security threats. They usually are only addressing these threats as they are discovered. This approach, in my opinion, does not help and therefore should change. When a CIRT plan is well developed, it inspires …show more content…
The higher the complexity of the business the more the focus will be on accountability. Companies are now reaching out and creating their own risk and compliance departments and other such initiatives across their organizations. Regulation’s such as the those listed in the National Institute of Standards and Technology (NIST) specifically, SP 800-30 - Risk Management Guide for Information Technology Systems. Even though the SP 800-30 - Risk Management Guide for Information Technology Systems is geared at only federal agencies, and they are required to follow federal guidelines, non-federal covered entities such a HIPAA are also required to follow certain federal guidelines. So as mobile technology starts to gain more and more access to systems, we will begin to see more regulation in the private