CISA 2.7.24

Contact law enforcement.

Identify nodes that have been compromised.

Block all compromised network nodes.

Notify senior management

Ensuring appropriate statistical sampling methods were used

Ensuring evidence is labeled to show it was obtained from an approved source

Ensuring unauthorized individuals do not tamper with evidence after it has been captured

Ensuring evidence is sufficient to support audit conclusions

Budget execution status

A capacity analysis of IT operations

A succession plan for key IT personnel

A list of new applications to be implemented

Phased approach

Parallel run

Direct cutover

Pilot study

To determine whether vendors should be paid for project deliverables

To provide the audit committee with an assessment of project team performance

To provide guidance on the financial return on investment (ROI) of projects

To determine whether the organization's objectives were met as expected

Securing information assets in accordance with the classification assigned

Validating that assets are protected according to assigned classification

Ensuring classification levels align with regulatory guidelines

Defining classification levels for information assets within the organization

Risk reduction

Risk acceptance

Risk transfer

Risk avoidance

Integrate application accounts with network single sign-on.

Perform periodic access reviews.

Retrain system administration staff.

Leverage shared accounts for the application.