Use Case: Managing Cyber Threat Response Activities - STIXProject/use-cases GitHub Wiki

Managing Cyber Threat Response Activities

Abstraction Level (High, Medium or Low): High

Related Use Cases:

Description: Cyber decision makers and cyber operations personnel work together to prevent or detect cyber threat activity and to investigate and respond to any detected incidences of such activity. Preventative courses of action may be remedial in nature to mitigate vulnerabilities, weaknesses, or misconfigurations that may be targets of exploit. After detection and investigation of specific incidents, reactive courses of action may be pursued. For example, in the case of a confirmed phishing attack with defined indicators, cyber decision makers and cyber operations personnel work together to fully understand the effects of the phishing attack within the environment including malware installed or malware executed, to assess the cost and efficacy of potential courses of action, and to implement appropriate preventative or detective courses of action.

Stakeholders/Goals:

Stakeholder: Stakeholder description (replace with your content)
Goal: Goal description (replace with your content)

Preconditions:

Precondition description (replace with your content)

Dependencies:

Dependency description (replace with your content)

Main Success Scenario:

Scenario description (replace with your content)