Part 1, Part 2, Part 3
In the previous blog on security awareness training we broadly discussed the various aspects that the agencies need to follow and awareness training that needs to be given to people who have access to Criminal Justice Information (CJI). In this blog, we will try to understand an agency’s response to various incidents that may occur. In the view of the increase in malicious attacks on agencies’ as well as government IT infrastructure, agencies require to secure information systems by establishing an incident handling capability that includes sufficient preparation, analysis, detection, recovery, user response and containment activities. The agencies should also ensure that there should be a mechanism to track, document and reports all the incidents to appropriate authorities or agency officials.