An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)
An incident management (IM) function is responsible for performing the broad range of activities associated with managing computer security events and incidents. For many years, the Software Engineering Institute's (SEI) CERT; Division has developed practices for building and sustaining IM func...
Gespeichert in:
| Hauptverfasser: | , , , |
|---|---|
| Format: | Report |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Alberts, Christopher Dorofee, Audrey Ruefle, Robin Zajicek, Mark |
| description | An incident management (IM) function is responsible for performing the broad range of activities associated with managing computer security events and incidents. For many years, the Software Engineering Institute's (SEI) CERT; Division has developed practices for building and sustaining IM functions in government and industry organizations worldwide. Based on their field experiences over the years, CERT researchers identified a community need for a time-efficient means of assessing an IM function. The Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC) is designed to address this need. The MRD-IMC is a risk-based approach for assessing the extent to which an IM function is in position to achieve its mission and objectives. Analysts applying the MRD-IMC evaluate a set of systemic risk factors (called drivers) to aggregate decision-making data and provide decision makers with a benchmark of an IM function's current state. The resulting gap between the current and desired states points to specific areas where additional investment is warranted. The MRD-IMC can be viewed as a first-pass screening (i.e., a health check) or high-level diagnosis of conditions that enable and impede the successful completion of the IM function's mission and objectives. This technical note provides an overview of the MRD-IMC method. |
| format | Report |
| fullrecord | <record><control><sourceid>dtic_1RU</sourceid><recordid>TN_cdi_dtic_stinet_ADA609862</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>ADA609862</sourcerecordid><originalsourceid>FETCH-dtic_stinet_ADA6098623</originalsourceid><addsrcrecordid>eNrjZIh1zFPwzCspyk8pTS7JzM9TKMlXKMlIVfDNLC4GcYMyi7MVXDIT0_Pyi0sykxXS8ouA6pMzU1LzShR8E_MS01NzQUznxILEpMyczJLM1GIFDd8gF11PX2dNHgbWtMSc4lReKM3NIOPmGuLsoZsCNCseaGBeakm8o4ujmYGlhZmRMQFpAPJSN6k</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>report</recordtype></control><display><type>report</type><title>An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)</title><source>DTIC Technical Reports</source><creator>Alberts, Christopher ; Dorofee, Audrey ; Ruefle, Robin ; Zajicek, Mark</creator><creatorcontrib>Alberts, Christopher ; Dorofee, Audrey ; Ruefle, Robin ; Zajicek, Mark ; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST</creatorcontrib><description>An incident management (IM) function is responsible for performing the broad range of activities associated with managing computer security events and incidents. For many years, the Software Engineering Institute's (SEI) CERT; Division has developed practices for building and sustaining IM functions in government and industry organizations worldwide. Based on their field experiences over the years, CERT researchers identified a community need for a time-efficient means of assessing an IM function. The Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC) is designed to address this need. The MRD-IMC is a risk-based approach for assessing the extent to which an IM function is in position to achieve its mission and objectives. Analysts applying the MRD-IMC evaluate a set of systemic risk factors (called drivers) to aggregate decision-making data and provide decision makers with a benchmark of an IM function's current state. The resulting gap between the current and desired states points to specific areas where additional investment is warranted. The MRD-IMC can be viewed as a first-pass screening (i.e., a health check) or high-level diagnosis of conditions that enable and impede the successful completion of the IM function's mission and objectives. This technical note provides an overview of the MRD-IMC method.</description><language>eng</language><subject>AGGREGATES(MATERIALS) ; Computer Programming and Software ; DATA PROCESSING SECURITY ; DECISION MAKING ; DIAGNOSTIC EQUIPMENT ; RISK MANAGEMENT ; Safety Engineering ; SOFTWARE ENGINEERING</subject><creationdate>2014</creationdate><rights>Approved for public release; distribution is unlimited.</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>230,780,885,27566,27567</link.rule.ids><linktorsrc>$$Uhttps://apps.dtic.mil/sti/citations/ADA609862$$EView_record_in_DTIC$$FView_record_in_$$GDTIC$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Alberts, Christopher</creatorcontrib><creatorcontrib>Dorofee, Audrey</creatorcontrib><creatorcontrib>Ruefle, Robin</creatorcontrib><creatorcontrib>Zajicek, Mark</creatorcontrib><creatorcontrib>CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST</creatorcontrib><title>An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)</title><description>An incident management (IM) function is responsible for performing the broad range of activities associated with managing computer security events and incidents. For many years, the Software Engineering Institute's (SEI) CERT; Division has developed practices for building and sustaining IM functions in government and industry organizations worldwide. Based on their field experiences over the years, CERT researchers identified a community need for a time-efficient means of assessing an IM function. The Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC) is designed to address this need. The MRD-IMC is a risk-based approach for assessing the extent to which an IM function is in position to achieve its mission and objectives. Analysts applying the MRD-IMC evaluate a set of systemic risk factors (called drivers) to aggregate decision-making data and provide decision makers with a benchmark of an IM function's current state. The resulting gap between the current and desired states points to specific areas where additional investment is warranted. The MRD-IMC can be viewed as a first-pass screening (i.e., a health check) or high-level diagnosis of conditions that enable and impede the successful completion of the IM function's mission and objectives. This technical note provides an overview of the MRD-IMC method.</description><subject>AGGREGATES(MATERIALS)</subject><subject>Computer Programming and Software</subject><subject>DATA PROCESSING SECURITY</subject><subject>DECISION MAKING</subject><subject>DIAGNOSTIC EQUIPMENT</subject><subject>RISK MANAGEMENT</subject><subject>Safety Engineering</subject><subject>SOFTWARE ENGINEERING</subject><fulltext>true</fulltext><rsrctype>report</rsrctype><creationdate>2014</creationdate><recordtype>report</recordtype><sourceid>1RU</sourceid><recordid>eNrjZIh1zFPwzCspyk8pTS7JzM9TKMlXKMlIVfDNLC4GcYMyi7MVXDIT0_Pyi0sykxXS8ouA6pMzU1LzShR8E_MS01NzQUznxILEpMyczJLM1GIFDd8gF11PX2dNHgbWtMSc4lReKM3NIOPmGuLsoZsCNCseaGBeakm8o4ujmYGlhZmRMQFpAPJSN6k</recordid><startdate>201405</startdate><enddate>201405</enddate><creator>Alberts, Christopher</creator><creator>Dorofee, Audrey</creator><creator>Ruefle, Robin</creator><creator>Zajicek, Mark</creator><scope>1RU</scope><scope>BHM</scope></search><sort><creationdate>201405</creationdate><title>An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)</title><author>Alberts, Christopher ; Dorofee, Audrey ; Ruefle, Robin ; Zajicek, Mark</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-dtic_stinet_ADA6098623</frbrgroupid><rsrctype>reports</rsrctype><prefilter>reports</prefilter><language>eng</language><creationdate>2014</creationdate><topic>AGGREGATES(MATERIALS)</topic><topic>Computer Programming and Software</topic><topic>DATA PROCESSING SECURITY</topic><topic>DECISION MAKING</topic><topic>DIAGNOSTIC EQUIPMENT</topic><topic>RISK MANAGEMENT</topic><topic>Safety Engineering</topic><topic>SOFTWARE ENGINEERING</topic><toplevel>online_resources</toplevel><creatorcontrib>Alberts, Christopher</creatorcontrib><creatorcontrib>Dorofee, Audrey</creatorcontrib><creatorcontrib>Ruefle, Robin</creatorcontrib><creatorcontrib>Zajicek, Mark</creatorcontrib><creatorcontrib>CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST</creatorcontrib><collection>DTIC Technical Reports</collection><collection>DTIC STINET</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Alberts, Christopher</au><au>Dorofee, Audrey</au><au>Ruefle, Robin</au><au>Zajicek, Mark</au><aucorp>CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST</aucorp><format>book</format><genre>unknown</genre><ristype>RPRT</ristype><btitle>An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)</btitle><date>2014-05</date><risdate>2014</risdate><abstract>An incident management (IM) function is responsible for performing the broad range of activities associated with managing computer security events and incidents. For many years, the Software Engineering Institute's (SEI) CERT; Division has developed practices for building and sustaining IM functions in government and industry organizations worldwide. Based on their field experiences over the years, CERT researchers identified a community need for a time-efficient means of assessing an IM function. The Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC) is designed to address this need. The MRD-IMC is a risk-based approach for assessing the extent to which an IM function is in position to achieve its mission and objectives. Analysts applying the MRD-IMC evaluate a set of systemic risk factors (called drivers) to aggregate decision-making data and provide decision makers with a benchmark of an IM function's current state. The resulting gap between the current and desired states points to specific areas where additional investment is warranted. The MRD-IMC can be viewed as a first-pass screening (i.e., a health check) or high-level diagnosis of conditions that enable and impede the successful completion of the IM function's mission and objectives. This technical note provides an overview of the MRD-IMC method.</abstract><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_dtic_stinet_ADA609862 |
| source | DTIC Technical Reports |
| subjects | AGGREGATES(MATERIALS) Computer Programming and Software DATA PROCESSING SECURITY DECISION MAKING DIAGNOSTIC EQUIPMENT RISK MANAGEMENT Safety Engineering SOFTWARE ENGINEERING |
| title | An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC) |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-10T14%3A27%3A24IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-dtic_1RU&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=unknown&rft.btitle=An%20Introduction%20to%20the%20Mission%20Risk%20Diagnostic%20for%20Incident%20Management%20Capabilities%20(MRD-IMC)&rft.au=Alberts,%20Christopher&rft.aucorp=CARNEGIE-MELLON%20UNIV%20PITTSBURGH%20PA%20SOFTWARE%20ENGINEERING%20INST&rft.date=2014-05&rft_id=info:doi/&rft_dat=%3Cdtic_1RU%3EADA609862%3C/dtic_1RU%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |