ABSTRACT

The use of a corporate Computer Emergency Response

Team (CERT) is invaluable. Due to the numerous com-

plexities of any computer-related crime, it is extremely

advantageous to have a single group that is acutely familiar

with the Incident Response Plan to call upon. The CERT

team should be a technically astute group, that is knowl-

edgeable in the area of legal investigations, the Corporate

Security Policy (especially the Incident Response Plan),

the severity levels of various attacks, and the company

position on information dissemination and disclosure.