Incident Response Risk Assessment Checklist

Download Free Incident Response Risk Assessment Checklist

- Do you know what you're trying to protect on your network?
- Was management involved in the risk assessment?
- Are there policies and procedures for system configurations?
- Do those policies and procedures cover file permissions, passwords, and applying patches?
- Is there a policy covering physical security?
- Do all user accounts have passwords?
- Have any default accounts installed with the system been changed?
- Are default guest accounts banned as a matter of policy?
- Are dormant accounts regularly disabled?
- Are security patches applied as part of the installation for all new systems?
- Do you try to crack the passwords on the system(s) you support to test for bad passwords?
- Do you conduct periodic audits to verify that security controls are in place?
- Do you look for unauthorized changes to files?
- Are you sure that all person(s) installing your systems have been trained on your company's security policies and procedures?
- Do you double-check that all known security problems have been addressed before bringing new hardware or software systems online?
- Do you have enough funding for security?
- Are needs for risk assessment, training, auditing, and policies and procedures reflected in your head count?
- Do you configure and review audit logs?
- Do you use caution when exporting filesystems?
- Do you disable unnecessary services?