Source: National Cyber Security – Produced By Gregory Evans
The first thing an IT security executive should do after the corporate network has been breached is fall back on the incident response plan that was put in place well before attackers got through the carefully constructed defenses. That’s what should have happened, but even if it wasn’t there are certain steps that anyone running an incident response team should follow in order to accomplish the main goal of any such cleanup: getting the network back to supporting business as usual as quickly as possible. There are seven key things breach-repair leaders should do, according to Wade Woolwine, the manager of strategic services for Rapid7, who outlined the steps last week at his company’s United customer conference. “It’s all about recovering the business back to normal operations,” Woolwine says. Here are the seven steps: Each incident may call for a different set of players. For example, if the first notification of a breach comes from the FBI calling to say it’s found out the corporate network was breached, one of the first people to call is the company legal officer. Or if the breach involves loss of critical corporate data the trade secrets that represent the value of the company […]
For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com
The post 7 things to do when your business is hacked appeared first on National Cyber Security.
View full post on National Cyber Security