Computer Incident Response Overview
 The goal of the Starken incident response team is to provide a path for detected/reported computer security incidents to be evaluated, researched and if necessary reported to appropriate agencies for escalated handling. Care is taken to evaluate each event to preserve evidence, avoid interruption of network services (except in identified emergencies) and follow best industry practices for systems administration and incident investigation. Starken has demonstrated experience in dealing with computer security incidents, as indicated by local news articles . Our ability to perform in this arena is also demonstrated by client testimonials . Starken's incident response handling follows the guidelines established in RFC 2350 Expectations for Computer Security Incident Response ( http://www.faqs.org/rfcs/rfc2350.html), Forum of Incident Response and Security Teams (FIRST http://www.first.org/) and those published by the Systems Administration and Network Security Institute (SANS http://www.sans.org/) document Incident Handling-step by step. Other resources include those offered by the GSA's Federal Computer Incident Response Capability (FedCIRC), the National Institute of Standards and Technology and the Carnegie Mellon Software Engineering Institute (http://www.cert.org/ ). Starken is ready to take the lead in dealing with your possible security breach incidents. |
