Loading...
 

We need categories to classify the cause of IT security incidents

By ITIL® from Experience©

The “Taxonomy of Operational Cyber Security Risks” (PDF 960 KB) published by the Software Engineer Institute can be used to produce a list of categories to classify the cause of IT security incidents.

Although not all ITSM Tools provide a hierarchical categorization scheme to classify the cause of incidents the taxonomy1 of cybersecurity risks provided below provides a starting point to develop categories appropriate for your organization.

More importantly, the document includes easy to understand definitions for each of the four Classes and Subclasses. Clear, unambiguous definitions are critical to ensure that people follow the process and classify the cause of IT security incidents properly to enable Problem Management.

Abstract
“This report presents a taxonomy of operational cyber security risks that attempts to identify and organize the sources of operational cyber security risk into four classes: (1) actions of people, (2) systems and technology failures, (3) failed internal processes, and (4) external events. Each class is broken down into subclasses, which are described by their elements. This report discusses the harmonization of the taxonomy with other risk and security activities, particularly those described by the Federal Information Security Management Act (FISMA), the National Institute of Standards and Technology (NIST) Special Publications, and the CERT Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE) method.” Source: http://resources.sei.cmu.edu/library/asset-view.cfm?assetid=9395

Table 1 of Taxonomy of Operational Risks. p.3.Source: http://resources.sei.cmu.edu/asset_files/TechnicalNote/2010_004_001_15200.pdf
Table 1 of Taxonomy of Operational Risks. p.3.Source: http://resources.sei.cmu.edu/asset_files/TechnicalNote/2010_004_001_15200.pdf


Last updated on: 2016-09-02

Quote:
"When working for IT Security, you are only one Incident away from being the most important group in I.T."

More Quotes



Related:

More on Incident Management


From Around the Web:



Category:
ITIL Process > Incident Management
Implementation > Technology (ITSM Tools)


1. Taxonomy: A classification of things, or the principles underlying such a classification. The term may be applied to relationship schemes such as parent–child hierarchies and network structures. A taxonomy might also be a simple organization of kinds of things into groups, or even an alphabetical list. Source: Best Management Practice portfolio: common glossary of terms and definitions Version 1, October 2012 https://www.axelos.com/Corporate/media/Files/Glossaries/AXELOS-Common-Glossary.pdf



Disclaimer


Copyright 2016 - ITIL® from Experience© - D.Matte