An incident response team was deployed to support a critical manufacturing organization in response to an incident that possibly compromised their enterprise network. The incident response team evaluated several hard drives while on site and discovered indicators of malicious software. 

The incident response team completed further analysis of the organization’s network, which revealed that the infection may have been caused by an employee who downloaded materials to his computer. When he downloaded the infected materials, the virus spread to over fifty hosts on the enterprise network. 

The incident response team, in conjunction with the manufacturing organization, identified all infected computers and eradicated the virus from the network. A review of the enterprise network revealed that the compromise did not adversely affect control processes or operations. 

The incident response team provided recommendations for future defensive measures to expedite the detection of network infection. They also provided suggestions for improving security practices and mitigation techniques. 

Describe two to three challenges you will have when implementing these guidelines and practices?