- Contact Us
You’ve been breached. Now what?
New vulnerabilities are coming fast and furious. The unfortunate truth for most of us is, it’s not a matter of IF we are breached, it’s a matter of WHEN we are breached. Replace the worry with a plan - an Incident Response Plan.
What qualifies as an incident? It’s defined as any attempt, successful or unsuccessful, to disable, compromise, bypass, alter, or by any other means maliciously misuse people, information, systems, applications, and hardware.
The first step in this planning process is to develop an Incident Response Team to address the following 7 components for your Incident Response Plan.
Don’t create your plan in a vacuum. Train folks on it. When you’re done training on it, train on it again. Teach your organization what to look for. It’s everyone’s responsibility to be and act like information security watchdogs and your people are your first line of defense against attacks.
Are you doing regular security awareness training? If not, you should be and this plan should be part of that training. Are you doing new hire training? Your Incident Response Plan should also be included in new hire training.
Lastly, test your plan. Don’t make it and forget it. Your business is changing. Make sure you review your Incident Response Plan at least annually and make any necessary changes.