If you find out your email credentials have been hacked and critical data stolen from your business:
Do you have a plan in place to respond quickly and effectively minimize the impact on your business?
The longer it takes to discover and address a cyber incident, the greater the harm cybercriminals do to your business. Severe data loss will damage both your bottom line and your professional reputation.
Cyber incident response 101
The National Institute of Standards and Technology (NIST) five-phase response:
Start by looking at system logs, examining vulnerable files, or tracking suspicious employee activity.
Create and implement appropriate safeguards such as system backups, security controls such as firewalls, and employee training in security best practices.
Quickly detect irregularities such as unusual network activity or attempted access of sensitive data by deploying techniques such as an intrusion detection system (IDS).
Isolate and cut off access to every affected system as part of your strategic plan for breach containment, investigation, and resolution.
In order to resume normal business operations as soon as possible, outline a recovery plan to:
Restore affected systems
Implement security controls to strengthen the prevention
Trace root cause of the event
Take legal action against perpetrators
Your staff must be aware of the incident response plan and know their roles and responsibilities in the event of a breach. The incident response plan should be reviewed and updated regularly to ensure that it remains relevant and effective.
Sydow Inc. will develop an incident response plan with you. Our expertise and experience empower you to:
Protect your business against cyber incidents
Create a comprehensive incident response plan
Abide by NIST's five phases of incident response
Contact us to schedule a no-obligation consultation.
Free from Sydow Inc
Download "Small Business Incidents: What You Can Learn From Their Experiences" here.