Creating a Data Loss Incident Plan - Slide 14

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20
Next Incident response planning-14 Next

Incident response planning

Customers, employees, investors, regulators, and other key stakeholders will lose confidence and trust in an organization that does not communicate effectively. This can have a direct impact on the bottom line – from lost revenues (and increased marketing expenses to recapture those revenues) to additional legal, compliance and public relations expenses. The communications component of a plan needs to address three critical components: 1) internal communications, 2) communication to impacted parties and 3) communication to applicable regulatory parties. A well-executed communications plan not only minimizes harm and potential legal liability but can actually enhance a company’s overall reputation.

The communications component of the data loss incident plan should have a set of pre-approved Web pages and templates staged, phone scripts prepared and frequently asked questions (FAQ?s) drafted and ready for posting. Staffing needs to anticipate call volumes and steps to minimize hold times and to consider the need of multi-lingual support. In the case of phishing exploits as a cause of the incident, it is suggested organization create a phishing warning page and FAQ in advance and post and replace the deceptive site as a teachable moment for users.

The Online Trust Alliance (OTA) advocates that all businesses create an incident response plan and be prepared for the likelihood that they will experience a breach or data loss in the future. The fact is breaches happen and often at the worst of times. Rather than be lulled into the belief it will not happen to your business, a well-designed plan is emerging as an essential part of regulatory compliance, demonstrating that a firm or organization is willing to take reasonable steps to protect data from abuse. Doing so is good business. Developing a plan can help to minimize risk to consumers, business partners and stockholders, while increasing brand protection and the long-term viability of a business.

This slideshow highlights key questions and recommendations for businesses to consider while building a data loss incident plan.

More Slideshows:


10 Tips for Making Websites Stickier Develop an effective strategy to keep customers engaged.

The Mobile Work Force Today Mobile employees carry an average of 2.68 mobile devices, including laptops, smartphones and increasingly tablets.


10 New Smartphones for Business New smartphones for today's business user.

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

PAM PAM Solutions: Critical to Securing Privileged Access

To protect the company from those insiders who abuse their privileged access and from hackers with stolen credentials, many companies are turning to a privileged access management (PAM) solution. ...  More >>

Fake news How Can We Fix the Fake News Problem?

Is fake news a security issue? Some say yes, as it can be used as a social engineering tool to spread disinformation and conceivably to get unsuspecting users to click on malicious links. ...  More >>

blockchain The World According to Blockchain

Blockchain comes with many costs and is surrounded by confusion. Here, we examine realistic use cases, drawbacks and the potential of blockchain. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.