Module 9: Incident Response
Module 9 Team Activity
Overview
Teams select one of the risks from their risk assessment and create an Incident Response Plan for their sector-based organization.
Objectives
| Module 8 Learning Objective # | Revised Bloom’s Taxonomy | Team Activity Objectives |
|---|---|---|
| 9.1 | Understand | Identify some common types of incidents that may occur in SCADA/ICS systems. |
| 9.2 | Understand | Identify the phases of an Incident Response (IR), as described in the NIST SP 800-61. |
| 9.3 | Understand | Identify incident containment and describe how it is applied to an incident. |
Based on your team’s investigation of your chosen sector and fictitious organization, determine which stakeholders to include. Develop a Incident Response Plan document that discusses the steps taken for one of the risks that was identified by your team’s CSET Risk Assessment in Module 7.
Assignment Options
Option 1: Write a 2-page abstract summarizing the Incident Response Plan your team has developed.
Option 2: Prepare 2–3 presentation slides about your Incident Response Plan.
Grading Criteria Rubric
- Content
- Evidence of teamwork
- References
- Use of American Psychological Association (APA) style in writing the assignment
Grade Points: 100
