Assigment-Week12-BD308CyberSecurity-SultanChairul-2581484737

Nama : Sultan Chairul

Nim : 2581484737

1. What are the four main phases of the PICERL incident response lifecycle? (Preparation, Detection & Analysis, Containment, Eradication & Recovery, Post-Incident Activity)

Answer :
The PICERL incident response lifecycle consists of the following main phases:

  1. Preparation – Developing policies, tools, procedures, and training to prepare for potential security incidents.
  2. Detection & Analysis – Identifying suspicious activities, investigating alerts, and determining the scope and impact of an incident.
  3. Containment, Eradication & Recovery – Limiting the spread of the incident, removing the root cause, and restoring affected systems to normal operations.
  4. Post-Incident Activity – Reviewing the incident, documenting lessons learned, and improving security controls to prevent similar incidents in the future.

These phases help organizations respond to incidents in a structured and effective manner.

2. Why is it critical to have a communication plan ready before a data breach occurs? Who should be notified?

Answer :
A communication plan is critical because it ensures that accurate information is shared quickly and efficiently during a data breach. Without a plan, confusion, delays, and misinformation can make the situation worse and damage trust. A well-prepared communication plan helps organizations coordinate their response and meet legal or regulatory requirements.

The people and groups that may need to be notified include:

  • Employees and management
  • Affected customers
  • Legal and compliance teams
  • Regulatory authorities
  • Business partners and vendors
  • Law enforcement agencies (when necessary)

Timely communication helps reduce the impact of the breach and maintain stakeholder confidence.

3. What is the purpose of a Business Continuity Plan (BCP)?

Answer :
The purpose of a Business Continuity Plan (BCP) is to ensure that essential business operations can continue during and after a disruption, such as a cyberattack, natural disaster, power outage, or system failure. A BCP outlines procedures for maintaining critical services, recovering systems, and minimizing downtime. It helps organizations reduce financial losses, protect important data, and continue serving customers during emergencies.

Keterangan : 100%

Bukti : Sudah mengerjakan tugas dengan baik dan benar.

Previous Post Previous Post
Newer Post Newer Post

Leave a comment