Get input from others affected by a security breach

Do you have a solid plan in place for if and when you experience a security breach? Does that plan include important contact information, and have you and your co-workers walked through the plan together? This step-by-step guide will help you to set an action plan in place.

Published: 07 Mar 2007 0:00

It's easy to assume that you know everything that's needed for responding to security breaches; you probably do from a technical perspective. Just don't overlook the importance of input from other business managers, legal counsel and your marketing/PR folks. By involving the right people, you'll gain insight into business processes you probably weren't aware of, investigative steps you must follow based on the type of business your organization is in and what to say or not say to curious people when they call after getting wind of the problem. Also, you won't want to re-create the wheel so never overlook the value of third-party guides on the subject of incident response planning such as NIST's Special Publication 800-61.

Plan for a security breach, step by step

Introduction
Step 1: Define what "breach" means to your business
Step 2: Don't overlook critical network infrastructure systems
Step 3: Know who to contact and have that information available
Step 4: Develop a simple yet methodical set of response steps
Step 5: Get input from others affected by a security breach
Step 6: Keep your momentum going

About the author: Kevin Beaver is an independent information security consultant, speaker and expert witness with Atlanta-based Principle Logic LLC. He has more than 19 years of experience in IT and specializes in performing information security assessments revolving around compliance and IT governance. Kevin has authored/co-authored six books on information security including Hacking For Dummies and Hacking Wireless Networks For Dummies (Wiley) as well asThe Practical Guide to HIPAA Privacy and Security Compliance (Auerbach). He's also the creator of the Security On Wheels audiobook series. You can reach Kevin at kbeaver@principlelogic.com>.

Read more on Hackers and cybercrime prevention

incident management plan (IMP) An incident management plan (IMP), sometimes called an incident response plan or emergency management plan, is a document that helps an organization return to normal as quickly as possible following an unplanned event.

Don't overlook these business resilience plan essentials Business resilience planning requires preventive and proactive protections across power supply, systems, cybersecurity and backup procedures. Staff planning is important as well.

UK businesses expect cyber attack recovery to cost at least £1.2m Most UK firms are implementing a cyber security policy and disaster recovery plan as they realise poor information security is the greatest risk to business

Windows 10 migration ahead? Don't forget Windows 7 security When planning a Windows 10 migration, it can be easy to get lost in all the planning and newness that come with a fresh OS. But while you're planning that upgrade, Windows 7 security should still be a concern.

The steps to effective cybersecurity incident response Planning and foresight are essential to any cybersecurity incident response plan. Follow these steps to make sure you're ready for a data breach.

Should risk management planning include root cause analysis? Incorporating root cause analysis in risk management planning could be beneficial to developing a security plan, but is it the best time for it?

SearchCIO

Get input from others affected by a security breach

Do you have a solid plan in place for if and when you experience a security breach? Does that plan include important contact information, and have you and your co-workers walked through the plan together? This step-by-step guide will help you to set an action plan in place.

Read more on Hackers and cybercrime prevention

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

Don't let edge computing security concerns derail your plans

Risk-based digital identity benefits CIOs, CMOs and customers

Agile practices endure and continue to adapt

SearchSecurity

Check Point: Qualcomm TrustZone flaws could be 'game over'

InfoTrax settles FTC complaint, will implement infosec program

Microsoft to apply CCPA protections to all US customers

SearchNetworking

The top 10 network security best practices to implement today

SD-WAN explained in 15 key terms and phrases

Cisco earnings foreshadow slowdown in tech spending

SearchDataCenter

Microsoft quantum development turns toward hardware

Top 5 options for Linux certifications

New hardware, use cases shape server benchmarking needs

SearchDataManagement

How AI could save the enterprise data catalog

With Vitess 4.0, database vendor matures cloud-native platform

Managing unstructured data is crucial to enterprises' AI goals

Read more on Hackers and cybercrime prevention

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.