In this chapter, we explore the process of
               investigating whether a computer crime has been committed and
               collecting evidence when appropriate. This chapter also includes a
               complete discussion of ethical issues and the code of conduct for
               information security practitioners.

               As a security professional, you must be familiar with the various types

               of investigations. These include administrative, criminal, civil, and
               regulatory investigations, as well as investigations that involve
               industry standards. You must be familiar with the standards of
               evidence used in each investigation type and the forensic procedures
               used to gather evidence in support of investigations.