Security News > 2021 > November > 3 Guideposts for Building a Better Incident-Response Plan

Invest and practice: Grant Oviatt, director of incident-response engagements at Red Canary, lays out the key building blocks for effective IR. The COVID-19 pandemic has highlighted the pressing need for security organizations to implement a structured, detailed and well-practiced incident-response plan.

To that end, let's discuss the key building blocks to building and testing an effective incident-response plan.

The main goal of an incident-response plan is to minimize business and operational impacts from a security incident, of course.

One of the core elements to building a quality incident-response plan is candor.

If the three "Ls" of real estate are "Location, location, location," the three "Ps" of incident-response plans are "Practice, practice, practice." Incident-response plans require executive sponsorship, legal counsel coordination and information-security response for effective execution.

High-quality decisions detailed in your response plan lead to reduced incident costs, as the consequent losses of cyberattacks or non-compliance are much higher than investing in the right program, relationships and processes ahead of time.

News URL

https://threatpost.com/3-guideposts-incident-response-plan/176019/