Certainly, digital forensics investigations are time-consuming and resource-consumptive but are integral to the continued securitization of an organization's data and the protection of both its customers and its market status. Following a brief overview of the type of information which Digital Investigation Reports are expected to contain, this essay will examine the question of what organizational managers expect to see in these reports and why.
Jones, Bejtlich and Rose (2005) explain that there are several types of digital investigation reports and the structure and content of each is ultimately determined by the person they were written for. If directed to either the IT Manager or the organization's Chief Security Officer, they are extremely detailed. The reports will, customarily, include all the relevant information surrounding the incident, the tools which were used to detect the penetration or attempted penetration, its consequences and the technologies employed for the investigation of the incident. The results of the investigation are comprehensively detailed. ...Show more