Computer Emergency Response Team (CERT)

Similar documents
School Leadership Rubrics

Emergency Safety Interventions: Requirements

GETTING THE MOST OF OUT OF BRAINSTORMING GROUPS

Promotion and Tenure Guidelines. School of Social Work

Telekooperation Seminar

GLBL 210: Global Issues

A Systems Approach to Principal and Teacher Effectiveness From Pivot Learning Partners

STEPS TO EFFECTIVE ADVOCACY

Two heads can be better than one

Exercise Format Benefits Drawbacks Desk check, audit or update

BYLAWS of the Department of Electrical and Computer Engineering Michigan State University East Lansing, Michigan

Law Professor's Proposal for Reporting Sexual Violence Funded in Virginia, The Hatchet

DISCIPLINARY PROCEDURES

Expert Reference Series of White Papers. Mastering Problem Management

Position Statements. Index of Association Position Statements

CLASS EXODUS. The alumni giving rate has dropped 50 percent over the last 20 years. How can you rethink your value to graduates?

Strategic Planning for Retaining Women in Undergraduate Computing

Procedures for Academic Program Review. Office of Institutional Effectiveness, Academic Planning and Review

Early Warning System Implementation Guide

Graduate Handbook Linguistics Program For Students Admitted Prior to Academic Year Academic year Last Revised March 16, 2015

Bullying Fact Sheet. [W]hen a school knows or should know of bullying conduct based on a student s

Texas A&M University-Corpus Christi. Environmental Advisory Council Initial Meeting Thursday, November 8, :30 am PP Conference Room.

Journalism 336/Media Law Texas A&M University-Commerce Spring, 2015/9:30-10:45 a.m., TR Journalism Building, Room 104

Lincoln School Kathmandu, Nepal

Preprint.

Promotion and Tenure Policy

SPECIALIST PERFORMANCE AND EVALUATION SYSTEM

University Senate CHARGE

Notes on The Sciences of the Artificial Adapted from a shorter document written for course (Deciding What to Design) 1

Indiana Collaborative for Project Based Learning. PBL Certification Process

Standards for Professional Practice

Tentative School Practicum/Internship Guide Subject to Change

Major Milestones, Team Activities, and Individual Deliverables

Guidance on the University Health and Safety Management System

PSYC 620, Section 001: Traineeship in School Psychology Fall 2016

Analyzing the Usage of IT in SMEs

TABLE OF CONTENTS. By-Law 1: The Faculty Council...3

One Hour of Code 10 million students, A foundation for success

BEST OFFICIAL WORLD SCHOOLS DEBATE RULES

MSW POLICY, PLANNING & ADMINISTRATION (PP&A) CONCENTRATION

ARKANSAS TECH UNIVERSITY

Hawai i Pacific University Sees Stellar Response Rates for Course Evaluations

INSTRUCTOR USER MANUAL/HELP SECTION

We seek to be: A vibrant, excellent place of learning at the heart of our Christian community.

Critical Thinking in the Workplace. for City of Tallahassee Gabrielle K. Gabrielli, Ph.D.

Update on Standards and Educator Evaluation

EXECUTIVE SUMMARY. Online courses for credit recovery in high schools: Effectiveness and promising practices. April 2017

Reading Horizons. Organizing Reading Material into Thought Units to Enhance Comprehension. Kathleen C. Stevens APRIL 1983

Beyond the Blend: Optimizing the Use of your Learning Technologies. Bryan Chapman, Chapman Alliance

BY-LAWS THE COLLEGE OF ENGINEERING AND COMPUTER SCIENCE THE UNIVERSITY OF TENNESSEE AT CHATTANOOGA

Social Emotional Learning in High School: How Three Urban High Schools Engage, Educate, and Empower Youth

Backstage preparation Igniting passion Awareness of learning Directing & planning Reflection on learning

Connecting Academic Advising and Career Advising. Advisory Board for Advisor Training

Use of Results 4. Assessment 5. Use of improve Student Learning? (or did it?) 1. Goals/Objective 2. Phase 3. Assessment Procedures

2020 Strategic Plan for Diversity and Inclusive Excellence. Six Terrains

Alpha provides an overall measure of the internal reliability of the test. The Coefficient Alphas for the STEP are:

Texas Board of Professional Engineers Professional Practice Update / Ethics

DEPARTMENT OF FINANCE AND ECONOMICS

THE FRYDERYK CHOPIN UNIVERSITY OF MUSIC

Math Pathways Task Force Recommendations February Background

Researcher Development Assessment A: Knowledge and intellectual abilities

Charter School Performance Accountability

IUPUI Office of Student Conduct Disciplinary Procedures for Alleged Violations of Personal Misconduct

Workload Policy Department of Art and Art History Revised 5/2/2007

Quiz for Teachers. by Paul D. Slocumb, Ed.D. Hear Our Cry: Boys in Crisis

ACCOUNTING FOR MANAGERS BU-5190-OL Syllabus

(2) "Half time basis" means teaching fifteen (15) hours per week in the intern s area of certification.

Ministry of Education, Republic of Palau Executive Summary

Beyond Classroom Solutions: New Design Perspectives for Online Learning Excellence

Program Change Proposal:

Department of Statistics. STAT399 Statistical Consulting. Semester 2, Unit Outline. Unit Convener: Dr Ayse Bilgin

BLACKBOARD & ANGEL LEARNING FREQUENTLY ASKED QUESTIONS. Introduction... 2

PUBLIC CASE REPORT Use of the GeoGebra software at upper secondary school

LEAVE NO TRACE CANADA TRAINING GUIDELINES

Thesis and Dissertation Submission Instructions

George Mason University Graduate School of Education Education Leadership Program. Course Syllabus Spring 2006

Author: Justyna Kowalczys Stowarzyszenie Angielski w Medycynie (PL) Feb 2015

Coding II: Server side web development, databases and analytics ACAD 276 (4 Units)

Special Disciplinary Rules for Special Education and Section 504 Students

LEAVE NO TRACE CANADA TRAINING GUIDELINES

Dutchess Community College College Connection Program

STUDENT MISCONDUCT PROCEDURE

Social Justice Practicum (SJP) Description

USC VITERBI SCHOOL OF ENGINEERING

Doctor of Philosophy in Theology

BSW Student Performance Review Process

An Introduction to LEAP

Shared Portable Moodle Taking online learning offline to support disadvantaged students

International Organizations and Global Governance: A Crisis in Global Leadership?

Identifying Students with Specific Learning Disabilities Part 3: Referral & Evaluation Process; Documentation Requirements

ESSENTIAL SKILLS PROFILE BINGO CALLER/CHECKER

Title IX, Gender Discriminations What? I Didn t Know NUNM had Athletic Teams. Cheryl Miller Dean of Students Title IX Coordinator

IN THIS UNIT YOU LEARN HOW TO: SPEAKING 1 Work in pairs. Discuss the questions. 2 Work with a new partner. Discuss the questions.

St Philip Howard Catholic School

WP 2: Project Quality Assurance. Quality Manual

COMM370, Social Media Advertising Fall 2017

9:30AM- 1:00PM JOHN PASSMORE L116

International Business BADM 455, Section 2 Spring 2008

Power of Ten Leadership Academy Class Curriculum

ADVANCED MACHINE LEARNING WITH PYTHON BY JOHN HEARTY DOWNLOAD EBOOK : ADVANCED MACHINE LEARNING WITH PYTHON BY JOHN HEARTY PDF

Transcription:

Computer Emergency Response Team (CERT) Computer Emergency Response Teams (CERT) were unheard of 10 years ago. This new form of work group was created to identify attacks on the Internet and to provide solutions to these attacks. An attack represents an illegal attempt to steal information (e.g., financial) from transactions on the Internet. The first CERT team was launched at the Software Engineering Institute at Carnegie Mellon University, the location of this video. Today, this work is conducted in the following way: (1) Individuals monitor for attacks. (2) When the evidence indicates that an attack is becoming severe, a CERT team is convened to discuss whether there should be action. (3) Action comes in the form of an advisory, which is a document sent to a user's community, warning about the attack and identifying immediate and longer term remedies. The advisories must be carefully worded to provide enough information to users while not giving information that might lead to more attacks. New CERT teams are constituted for each advisory. When people are not working on teams, they may be working with vendors to improve systems in order to prevent future attacks. This video contains four parts: Part I Part II Part III Part IV Making a Team Decision Describing the CERT Team Factors Leading to Team Effectiveness Assessing Group Effectiveness For Hour Long Classes Use Part I alone to demonstrate effective group process. For Longer Classes Group Process and Results: Show Part I and discuss effective group process (discussion questions below). Part I can be coupled with Part IV to provide examples of how internal group processes can affect external group outcomes (e.g., client satisfaction, quality of service).

New Forms of Work Groups: Coupling Parts I, II (Describing the CERT Team), and IV (Assessing Group Effectiveness), the video can be used to illustrate the features of crossfunctional groups whose decisions have serious impact on external constituencies. CERT Teams are different from traditional work groups because they focus exclusively on external constituencies, rely on other technical groups outside of their organization to get their job done, their membership changes with each advisory, and their effectiveness is not easy to assess. High Performance in Contemporary Work Groups: In a three-hour class (or over two 90-minute sessions), showing all four parts provides support for development of internal and external process models of group performance. I. Making a Team Decision: The Sniffer Incident (a.k.a. CERT: Working on an Advisory) There has been an attack on the Internet. It has been invaded by a "password sniffer" which can identify user IDs and passwords. Over 45,000 hosts are involved. The CERT team is responsible for sending out an advisory to Internet users that allows them to protect themselves from this attack. Should an advisory be sent out? If so, the team's task is twofold: to help those users not yet affected to prevent an attack, and to help those who are already affected to recover. They must decide on whether to issue an advisory, its content, and the timing of their announcement. "... bigger than the Internet worm" "... makes us look bad" "Long-term and short-term, we will need to respond." "We have to have better words." "The interface is in promiscuous mode." Some best practices the class will observe include: Use of the board Role of team leader as a facilitator Active participation by all members Problem identification Building on each other's ideas Role of opposition member (devil's advocate) Check for consensus Get problem statement agreed to and shared Use of summarization as a consensus-building technique Putting names by action items It may be useful to:

a. Show the class the first few minutes to be sure they understand what you want them to do to answer this question. Then rewind and start again. b. Draw a picture of the group after you show the first few minutes so you have a way to talk to people: Member 2 Member 1 Member 3 (Public Relations Manager) Team Leader Member 4 Member 6 (Public Relations) Member 5 2. What information do they use to make their decision? past experience vendors reporters other teams via e-mail service providers users Note: Some of this information is gathered before the meeting, but some is also gathered in the two hours set aside after the meeting. II. Describing the CERT Team: What can the CERT team tell us about new forms of groups? After the meeting, CERT team members describe their experiences in working together. Each member is an expert with a high degree of respect for their team members. "When we come to the table, there is nothing there." "Conflicts get resolved in this room." "Everyone believes their opinion is the right one." "...high stress levels..." Before viewing Part II, ask the class: 1. What adjectives would you use to describe the CERT team? The CERT team describes itself as: creative, hardworking, eclectic, diverse, busy, chaotic.

2. What other groups are like CERT teams? Fire-fighting and other trouble shooting groups. Task forces (e.g., for strategic planning) New forms of work groups are increasingly ad hoc, temporary, cross-functional, empowered, and under high pressure from external constituencies (e.g., customers) for quality results. Critical features for success in such groups (Meyerson, Weick, and Kramer, 1996) include: Diversity in skills. Overlapping social networks or limited labor pools. Complex tasks involving interdependent work. Deadlines. Tasks are non-routine and not well understood. Tasks are consequential. High level of respect of skills competencies of each other Reputation of individual as well as group is on the line. III. Factors Leading to Team Effectiveness We asked the CERT team to describe a situation where the group really had worked well together. The Sniffer Advisory Incident in Part I was their chosen example of high performance. CERT team members debrief their experiences during the Sniffer Advisory Incident. "Every time they send communications out on the Internet, their reputation is on the line." "...getting beaten up privately instead of publicly..." "Sum is greater than the individual parts." 1. How do you learn to be in a cross-functional group that only meets occasionally and when there is a crisis? mentoring know someone before joining parties step back and laugh become friends with each other outside of CERT meetings 2. What approach to tasks do members of this group take? What is their approach to building social relations with each other?

Team members attribute their success, particularly in the Sniffer Incident, to: always collecting information paying attention to individual members (including James's objections valuing opposition relevant to the task spreading work out across all team member so everyone contributes coordinating with other teams IV. Assessing Group Effectiveness This section concerns group effectiveness criteria. 1. How do we know that the CERT team is effective? Members tell that the following indicators are important: renewal of funding user feedback via e-mail and at conferences referrals from knowledgeable users in the area 2. What are critical criteria, both intermediate and final, for group effectiveness? Copyright 1997, Paul S. Goodman and Denise M. Rousseau

2024 © educationdocbox.com Privacy Policy | Terms of Service | Feedback