We’ve all seen the headlines or heard the news. And, possibly some of us may have even been impacted. Data breaches happen. Period. From large retail big box chains to small mom and pop shops, no one is ever 100 percent completely safe from a cyberattack. That’s why an incident response plan is a necessity for your business.
What is an incident response plan?
An incident response plan is an organized strategy designed to manage the impact of a data breach. By outlining a plan and a defining of a qualifying incident, your company stands a greater chance of getting ahead of the situation to minimize damage and reduce recovery time and costs.
What should my plan include?
No incident response plan is one-size-fits-all, but here is some important information to include in your plan:
- Contact information for all parties involved with your IT operation
- Designated incident response manager
- Definition of the severity of the incident
- Response process for various incident assessments (system failure, virus, DDoS)
- Notification of the proper authorities
- Review of logs or examination of evidence
- Assessment of damages and costs
- Update of security policies