Software Engineering Institute

The number of computer and software vulnerabilities is growing, and the sophistication of attacks is increasing. Organizations need to develop a comprehensive plan to secure sensitive information and ensure the survivability of their critical infrastructure. This case study shares lessons learned by a financial institution as it developed and implemented both a plan to address security concerns and a CSIRT.