Assessing organisational incident response readiness in cloud environments

Andrew Malec, P. W.C. Prasad

Research output: Book chapter/Published conference paperConference paperpeer-review

Abstract

Organisations across the world are adopting cloud-based technologies due to several benefits including efficiency, agility, and cost effectiveness. These same organisations are also facing an increasing number of cyber threats from threat actors across the globe. The difficulty faced by these organisations is ensuring their cloud-based technology environments are sufficiently protected prior to an incident, and that incident responders can rapidly identify, preserve, acquire, and analyse that data to support digital forensic investigations. As a result, organisations find themselves unable to effectively respond to cyber security incidents in cloud environments leading to loss of data, ineffective processes, and increases the risk of inadmissibility of evidence in court proceedings. An organisation’s incident response readiness is often limited by their inability to assess their response maturity due to a lack of incident response maturity frameworks. This review aims to provide an overview of commonly used frameworks within existing incident response and digital forensics processes by reviewing existing industry standard frameworks, assessing their efficacy, and identifying room for improvement by suggesting an incident response readiness assessment and maturity model. This model could be considered by organisations aiming to identify deficiencies within current processes, procedures, or considerations, and improve upon them to roadmap cloud cyber resilience.

Original languageEnglish
Title of host publicationInnovative Technologies in Intelligent Systems and Industrial Applications
Subtitle of host publicationCITISIA 2022
EditorsSubhas Chandra Mukhopadhyay, S.M. Namal Arosha Senanayake, P.W. Chandana Withana
PublisherSpringer Science and Business Media Deutschland GmbH
Pages387-396
Number of pages10
Volume1209
ISBN (Electronic)9783031290787
ISBN (Print)9783031290770
DOIs
Publication statusPublished - 2023
Event7th International Conference on Innovative Technologies in Intelligent Systems and Industrial Applications, (CITISIA 2022) - Virtual, Sydney, Australia
Duration: 14 Nov 202216 Nov 2022
https://web.archive.org/web/20220723035937/https://www.citisia.org/ (Conference website)
https://link.springer.com/book/10.1007/978-3-031-29078-7 (Proceedings)

Publication series

NameLecture Notes in Electrical Engineering
Volume1029 LNEE
ISSN (Print)1876-1100
ISSN (Electronic)1876-1119

Conference

Conference7th International Conference on Innovative Technologies in Intelligent Systems and Industrial Applications, (CITISIA 2022)
Country/TerritoryAustralia
CitySydney
Period14/11/2216/11/22
OtherThe “Conference on Innovative Technologies in Intelligent Systems & Industrial Applications” (CITISIA) is a conference that aims to provide researchers and industry experts with a platform for presenting their innovative projects and products. It is also a measure of recognition of academics’ professional and technical achievements – by industries and international organizations. This conference is designed to facilitate exchanges of ideas through communication, networking and learning from others, academics and young researchers in terms of greater collaboration.
The conference provides a unique platform for industry professionals and researchers to share their experiences and insights through their latest research and to promote research and development activities among researchers. CITISIA 2022 provides an international forum for those actively involved in research to report on the latest innovations and developments, summarize state-of-the-art works, and share ideas and advances from all aspects of engineering, where advances play an increasing role in providing enriching experiences and improving the quality of lives.
Internet address

Fingerprint

Dive into the research topics of 'Assessing organisational incident response readiness in cloud environments'. Together they form a unique fingerprint.

Cite this