SIEM for ITIL Incident Response - Part 2 - AlienVault
SIEM for ITIL Incident Response - Part 2 - AlienVault
SIEM for ITIL Incident Response - Part 2 - AlienVault
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
151 – INITIALBy definition, there can really be no service catalog at this stage of maturity, however we canat least list what the inferred services are, from which to use as a base to build out anevolving catalog from:Detection• Intrusion Detection1. Discovery of Scope of Intrusion2. Discovery of Vector of IntrusionRemediation• Disaster Recovery1. Restoration of Compromised Systems.• Business Continuity1. Remediation of Vector of IntrusionMetrics Support• NoneIntelligence• None