Portfolio Activity Exemplar: Use the NIST Cybersecurity Framework to respond to a security incident
作品集活動範例:使用 NIST 網路安全框架應對安全事件
Here is a completed exemplar along with an explanation of how the exemplar fulfills the expectations for the activity.
這裡是一個完成的範例,並附有說明該範例如何滿足活動的期望。
Completed Exemplar 完成範例
To review the exemplar for this course item, click the following link:
要查看此課程項目的範例,請點擊以下連結:
Link to exemplar: 範例連結:
OR 或
If you don’t have a Google account, you can download the exemplar directly from the following attachment.
如果您沒有 Google 帳戶,您可以直接從以下附件下載範例。
Assessment of Exemplar 範例評估
Compare the exemplar to your completed incident report analysis and incident report. Review your work using each of the criteria in the exemplar. What did you do well? Where can you improve? Use your answers to these questions to guide you as you continue to progress through the program.
將範例與您完成的事件報告分析和事件報告進行比較。使用範例中的每個標準來檢視您的工作。您做得好的地方是什麼?哪些地方可以改進?利用這些問題的答案來指導您在課程中繼續進步。
Note: The exemplar represents one example of how to complete the activity. Yours may differ in certain ways. What’s important is that you have an idea of what your incident analysis should resemble.
注意:此範例僅為完成該活動的一個示例。您的版本可能在某些方面有所不同。重要的是,您應該對您的事件分析應該如何展現有一個概念。
The exemplar is accompanied by the activity, and presents a complete incident report analysis to establish:
該範例附有活動,並提供完整的事件報告分析,以確立:
What type of attack occurred, the scope of the incident, and its impact to the organization
發生了什麼類型的攻擊、事件的範圍以及對組織的影響Potential network vulnerabilities and protection measures
潛在的網路漏洞和保護措施Detection tools to monitor and secure the network
用於監控和保護網路的檢測工具How to respond to cybersecurity incidents in the future
如何應對未來的網路安全事件Recovery plans to restore normal operations
恢復計劃以恢復正常運作