6 Phases of an Incident Response Plan

SecurityMetrics Podcast | 14

6 Phases of an Incident Response Plan

“Something has happened.” Your company has experienced the worst: a data breach. You’ll need to answer questions. You’ll need to implement emergency operations and plans, run backup, and talk to investigators. Not a convenient time to start your Incident Response Plan.

According to Dave Ellis, SecurityMetrics VP of Investigations (GCIH, PFI, QSA, CISSP), an Incident Response Plan (IRP) is, in short, “What you do ahead of time, in preparation for an event that you hope never happens.”

Dave Ellis sits down with Host and Principal Security Analyst Jen Stone (MCIS, CISSP, CISA, QSA) to discuss in detail the phases of an IRP, along with the circumstances, variables, and options surrounding this “worst case scenario.”

• Emergency-Mode Operations, contingency planning, and the recovery phase
• How to get initial buy-in from your executives, C-suites, and decision makers
• Case studies and examples from the field: the practical realities involved in maintaining a current Incident Response Plan
• Tips to avoid, handle, and learn from data breaches, ransomware, and other types of malware

Resources:

Download our Guide to PCI Compliance! - https://www.securitymetrics.com/lp/pci/pci-guide

Download our Guide to HIPAA Compliance! - https://www.securitymetrics.com/lp/hipaa/hipaa-guide

[Disclaimer] Before implementing any policies or procedures you hear about on this or any other episodes, make sure to talk to your legal department, IT department, and any other department assisting with your data security and compliance efforts.