1. A key part of a security strategy is to include tactics for dealing with various security incidents. For example; depending on the security incident there should be specific policies and procedures defined for: 1) incident prevention, 2) incident detection, 3) incident response 4) incident recovery. The lecture notes described this using the example of repeated entry of incorrect passwords.

The list of incidents is endless. A few other examples of incidents could be: theft or loss of a laptop; physical break in to a facility; phishing email sent to staff; tailgating of people into a facility; impersonation of an employee with a pretexting scheme.

Select a particular type of security incident and describe the various tactics (a process or procedure) that illustrates addressing each of the four (4) areas.The incident you select should be detailed so that your examples of the tactics for each area (prevention, detection, response and recovery) provide some specifics. Note there is often more than one tactic for each category.