My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2025-05-27-minutes-it-study-session
>
Meetings
>
2025
>
10. October
>
2025-10-07 10:00 AM - Commissioners' Agenda
>
2025-05-27-minutes-it-study-session
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
10/2/2025 3:46:32 PM
Creation date
10/2/2025 3:44:53 PM
Metadata
Fields
Template:
Meeting
Date
10/7/2025
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Item
Approve Minutes
Order
1
Placement
Consent Agenda
Row ID
136417
Type
Minutes
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
90
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />©2025 Lumifi Cyber, Inc. All rights reserved. <br />PRIVATE - Controlled by Lumifi Cyber <br /> <br />5/19 <br />PRIVATE - Controlled by Lumifi Cyber <br />General Information <br />Background & Objectives <br />Purpose <br />Kittitas County would like for Lumifi Cyber to conduct an I ncident R esponse Tabletop <br />Exercises (TTE) against their Incident Response Plan (IRP). This statement of work <br />describes the approach and objectives for each session: <br />• To review and conduct a TTE or ‘dry run’ of the existing Kittitas County IRP <br />o Ensure Kittitas County staff understand the roles, responsibilities and <br />activities they will be required to perform when the IR Plan is activated <br />o Provide recommendations for subsequent TTEs that will include <br />scenarios designed to validate the remediation of weaknesses identified <br />in the first TTE <br />Scope <br />Our approach for the TTE program executes the following tasks: <br />• Review of current incident management and incident response practices, <br />processes and documentation against applicable standards of practice <br />• Document a formal incident response testing program for periodic evaluation <br />of the effectiveness and applicability of the program <br />o Develop testing criteria, requirements and procedures for the periodic <br />evaluation of the Incident Response Plan and its critical components <br />• Conduct the first TTE according to one of the following IR frameworks <br />o HITRUST CyberRX 2.0 Playbook Level 1 (Basic), a scenario -based <br />exercise program to assess the cyber security response preparedness <br />of healthcare organizations but is fully applicable to any organization <br />o We recommend the CyberRX approach as the NIST methodology is <br />not part of an integrated TTE approach <br />o A combination of the NIST 800 -62r2 Computer Security Incident <br />Handling Guide (NIST.SP.800-61r2), NIST 800-84 Guide to Test, Training, <br />and Exercise Programs for IT Plans and Capabilities (NIST.SP.800 -84) <br />and NIST 800 -184 Guide for Cybersecurity Event Recove ry (NIST.SP.800 - <br />184) <br />• Provide an after-action report that includes a Table of Findings and <br />Recommendations for increasing the effectiveness of the IR process and plans
The URL can be used to link to this page
Your browser does not support the video tag.