• Skip to main content
  • Skip to primary sidebar

Information Security Management ResourceKit

A Public Service of SecureTheVillage

  • Home
  • Return to SecureTheVillage

Responding to an Incident

In the event of a security or privacy incident, the IRT’s response strategy will manage the following:

  1. What needs to be done to contain the incident and prevent the attack from spreading?
  2. How do we prevent the attack from re-occurring?
  3. Will the response alert the attacker and do we care?
  4. What needs to be documented about the incident including how it occurred, where the attack came from, what the response was, and whether the response was effective.
  5. What evidence is to be preserved including hard drives, audit logs, email correspondence, witnesses spoken to, etc.
  6. Who needs to be notified, including personnel, clients, law enforcement, insurance, outside information security vendors, the Organization’s attorney, external legal counsel, etc.

The response strategy for a security incident is to include the following:

  1. Evidence Preservation
  2. Containment and Restoration

 

Contributed by Citadel Information Group
© Copyright 2017. Citadel Information Group. All Rights Reserved.

 

Filed Under: Getting Cyber-Prepared

Primary Sidebar

Resources Areas

  • Cyber Threats
    • Ransomware
    • Online Bank Fraud
  • Information Security Management / Leadership
  • Information Security Policies and Standards
  • Information Security Risk Assessment
  • Information Classification and Control
  • Securing the Human
  • Third-Party Security Management
  • Managing Security of the IT Infrastructure
  • Legal & Related
    • Basic Cyber Laws
    • Payment Card Industry Data Security Standard (PCI DSS)
    • General Data Protection Regulation (GDPR)
    • California Consumer Privacy Act (CCPA)
    • Cybersecurity Maturity Model Certification (CMMC)
  • Getting Cyber-Prepared: Incident Response & Business Continuity
  • Managing Cyber-Risk and Insurance
  • Personal Cybersecurity
  • Cyber Freedom

Copyright © 2023 · SecureTheVillage