The ISM will:
- Provide training to staff on this plan at least annually and when major updates are developed
- Engage the IRT, outside information security vendors, attorney(s) and others, as deemed appropriate, in a “table-top” simulation of the plan against a breach or information technology business continuity incident at least semi-annually
- Test backup/recovery and other high risk procedures at least quarterly
- Update this plan as people and circumstances require
- Review this plan at least semi-annually and update as necessary
Contributed by Citadel Information Group
© Copyright 2017. Citadel Information Group. All Rights Reserved.