When it comes to a security breach, time is on the adversary’s side. The longer the breach remains undetected, the greater the impact to your organization.
Any organization can create a basic Computer Security Incident Response Plan (CSIRP) response plan. Though surprisingly, 30 percent of organizations surveyed still don’t have an incident response plan in place.
Unfortunately, simply having a CSIRP in place is not enough. Because of the sophistication and the risk posed by targeted or advanced threat actors to the most sensitive areas of your business or organization, your team must have a response plan in place that is tested, continually updated, and expanded to address even the most sophisticated threats and threat actors
This white paper is designed to be a quick reference guide for IT and IT Security leaders, we hope that you will consider the questions posed here as an opportunity to improve your organization’s incident response capabilities and better prepare for that moment when an incident actually does occur.
You will learn how to answer these questions:
- Why having a plan is not enough?
- Is our Computer Security Incident Response Plan in place and up to the Task?
- Do we have the expertise to address the full scope of the threat, eradicate it and determine the extent of the compromise?