When it comes to a security breach, time is on the adversary’s side. The longer the breach remains undetected, the greater the impact to your organisation.
Any organisation can create a basic Computer Security Incident Response Plan (CSIRP) response plan. Though surprisingly, 30 percent of organisations surveyed still don’t have an incident response plan in place.
Unfortunately, simply having a CSIRP in place is not enough. Because of the sophistication and the risk posed by targeted or advanced threat actors to the most sensitive areas of your business or organisation, your team must have a response plan in place that is tested, continually updated, and expanded to address even the most sophisticated threats and threat actors.
This white paper is designed to be a quick reference guide for IT and IT Security leaders, we hope that you will consider the questions posed here as an opportunity to improve your organisation’s incident response capabilities and better prepare for that moment when an incident actually does occur.
You will learn how to answer these questions:
- Why having a plan is not enough?
- Is our Computer Security Incident Response Plan in place and up to the Task?
- Do we have the expertise to address the full scope of the threat, eradicate it and determine the extent of the compromise?