What best practice is recommended for CIRT implementation?
A. Define a computer security incident clearly in the CIRT plan
B. Limit training to senior IT staff only
C. Encourage CIRT members to attack back at attackers
D. Use outdated technology to challenge CIRT capabilities
