Creating a Data Loss Incident Plan - Slide 14

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20
Next Incident response planning-14 Next

Incident response planning

Customers, employees, investors, regulators, and other key stakeholders will lose confidence and trust in an organization that does not communicate effectively. This can have a direct impact on the bottom line – from lost revenues (and increased marketing expenses to recapture those revenues) to additional legal, compliance and public relations expenses. The communications component of a plan needs to address three critical components: 1) internal communications, 2) communication to impacted parties and 3) communication to applicable regulatory parties. A well-executed communications plan not only minimizes harm and potential legal liability but can actually enhance a company’s overall reputation.

The communications component of the data loss incident plan should have a set of pre-approved Web pages and templates staged, phone scripts prepared and frequently asked questions (FAQ?s) drafted and ready for posting. Staffing needs to anticipate call volumes and steps to minimize hold times and to consider the need of multi-lingual support. In the case of phishing exploits as a cause of the incident, it is suggested organization create a phishing warning page and FAQ in advance and post and replace the deceptive site as a teachable moment for users.

The Online Trust Alliance (OTA) advocates that all businesses create an incident response plan and be prepared for the likelihood that they will experience a breach or data loss in the future. The fact is breaches happen and often at the worst of times. Rather than be lulled into the belief it will not happen to your business, a well-designed plan is emerging as an essential part of regulatory compliance, demonstrating that a firm or organization is willing to take reasonable steps to protect data from abuse. Doing so is good business. Developing a plan can help to minimize risk to consumers, business partners and stockholders, while increasing brand protection and the long-term viability of a business.

This slideshow highlights key questions and recommendations for businesses to consider while building a data loss incident plan.

More Slideshows:


10 Tips for Making Websites Stickier Develop an effective strategy to keep customers engaged.

The Mobile Work Force Today Mobile employees carry an average of 2.68 mobile devices, including laptops, smartphones and increasingly tablets.


10 New Smartphones for Business New smartphones for today's business user.

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

IT security skills 7 Top Skills for Security Pros

Executives at several top tech firms outline the skills they need now and in the near future, including IaaS and IoT security expertise. Other skills listed may surprise you. ...  More >>

IT security careers The Most In-Demand Security Jobs and How to Get Them

Security professionals are in demand right now, and entry-level security jobs generally fall into either an engineer or analyst role. Find out more about required skills and career paths. ...  More >>

142x105itbeusasecurity2.jpg 9 Predictions for Cybersecurity’s Role in Government and Politics in 2017

Experts predict how cybersecurity will affect and involve our government, policies and politics in 2017. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.