Computer Security Incident Response Team (CSIRT) Planning
According to ("Incident Response Plan - Cipher", 2020), having a CSIR plan helps in the following;
Protecting data is of importance both personally and professionally. By following an updated incident response plan, your team can proactively protect your data. Protecting data assets throughout the incident response process includes countless tasks and responsibilities for the IR team.
Protect Organization Reputation & Customer Trust, IDC found that 78% of consumers would take their business elsewhere if directly affected by a data breach. If a security breach is not properly handled quickly, the company risks losing some or all its customer base.
Protect the organization Revenue, A thorough incident response process safeguards your organization from a potential loss of revenue.
To make CSIR Plan happen, training the available IT staff and create policies basing these policies on best practice frameworks developed by industry groups, such as the National Institute of Standards and Technology (NIST) can help to save the time and money of hiring a new CSIR professional.
Even if we proceed with this plan, where would you recommend, we start?
I would recommend we start with the Policies and since the organization has no time and resources, we will starting with creating policies basing on best practice frameworks developed by industry groups, such as the National Institute of Standards and Technology (NIST) or the International Organization for Standardization (ISO). Using the Policy Framework that includes Policies, standards, procedures and Guidelines saves time and help to stay on Track.
References:
Incident Response Plan - Cipher. (2020). Retrieved 13 May 2020, from https://cipher.com/blog/3-reasons-why-you-need-an-incident-response-plan/
Comments
Post a Comment