New Computer Security Incident Handling Guide from NIST.gov
by Jacco Tünnissen
There's a new version of the Computer Security Incident Handling Guide from NIST (Jan 2004).
The guide (148 pages, 2.8MB) covers the complete range of the Incident Handling process and includes chapters about: organizing an Incident Response Capability, handling an actual Incident, handling Denial of Service Incidents, handling Malicious Code Incidents, handling Inappropriate Usage Incidents, and much more. It also features checklists, FAQs and other resources.
This NIST Special Publication 800-61 contains a wealth of information and really should be on the desk of every IT Security manager -- No excuse.
For even more Incident Handling resources, visit the overview at Intrusions.org