Case 4 - Digital Forensics and Information Security

Case4- Digital Forensics and Information Security

 

The focus of Case 4 is the examination of the concept of digital forensics and the main steps followed in the procedures for evidence gathering.

The Background Info provides a list of the required and optional readings.

When you have read through the articles along with research on other related material, compose a short paper on the topic (4-5 pages, not counting the cover and references):

The most efficient process of gathering digit forensic evidence to track intrusion events.

Case Assignment

In preparing the Case Assignment, answer these questions:

· Describe the field of Computer Forensics.

· Develop a plan for gathering forensic evidence.

· Discuss your plan in the context of a small (less than 500 people) to large global firm.

· Discuss some laws that govern seizure of evidence in the United States and in the European Union.

 

 

 

Background Readings:

Incident Response Plan by Skillset.com https://www.youtube.com/watch?v=PhROeWMPBqU

All things Entry Level Digital Forensics and Incident Response Engineer DFIR https://www.youtube.com/watch?v=Cst8K64j5_Y

Gregory, P. H. (07/24/2019). CISM®: Certified information security manager all in one McGraw-Hill. Chapter 5

Harris, S., & Maymi, F. (2018). CISSP all-in-one exam guide, 8th edition, McGraw-Hill, Chapter 7 Skillsoft Material

Automating Incident Response and Forensics https://www.youtube.com/watch?v=f_EcwmmXkXk

Memory Acquisition in Digital Forensics and Incident Response https://www.youtube.com/watch?v=UgfIV4Q042k

Maras, Marie-Helen (2015). Computer forensics. Jones and Bartlett Learning, Chapters 10 -14. ISBN:9781449692223. Available in the Trident Online Library.

Johnson, L. R. (2014). Computer incident response and forensics team management: Conducting a successful incident response. Syngress Publishing. SBN:9781597499965, Chapter 10-16. Available in the Trident Online Library.