https://community.isc2.org/t5/Industry-News/Do-you-have-Comprehensive-and-well-Rehearsed-Cyber-Breach/m-p/378#M19 <P><A title="Do you have a Plan for responding to a Cyber Breach?" href="https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from" target="_self">Do you have a Plan for responding to a Cyber Breach?</A></P><P>&nbsp;</P><P>Re:</P><P>&nbsp;</P><P><A title="Caleb Barlow @ Ted" href="https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from" target="_self">https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from</A></P><P>&nbsp;</P><P>I've been asked often to help developed and run table top practice for a Cyber Breach response plan - Does&nbsp; your Enterprise have One?</P><P>&nbsp;</P><P>The point made in the above Ted talk is that the way advanced peristent threats (APTs) had evolved and Dark Web&nbsp; 'trading' activities are progressing is that it is not a question of "If your defences and best practices are going to get breached?", but "When ? " .&nbsp; In addition it worth highlighting that Federal Gonvernment set their bar very high - as Gen Hayden highlights in his book " Palying to the Edge ".&nbsp; NIST had developed quite detailed guidelines that we all must follow, yet : Do you have PR and Crisis Management Plan in Place that details steps that your enterprise will have to take when the breach is discovered?&nbsp;&nbsp; Did You develop thi Plan well in advance , practiced it often with third party supervised Table Top Excersises?</P><P>&nbsp;</P><P>Do NOT let your enterprise follow the path of Equifax and Yahoo !</P> Sun, 08 Oct 2017 14:53:38 GMT BorisV 2017-10-08T14:53:38Z https://community.isc2.org/t5/Industry-News/Do-you-have-Comprehensive-and-well-Rehearsed-Cyber-Breach/m-p/378#M19 <P><A title="Do you have a Plan for responding to a Cyber Breach?" href="https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from" target="_self">Do you have a Plan for responding to a Cyber Breach?</A></P><P>&nbsp;</P><P>Re:</P><P>&nbsp;</P><P><A title="Caleb Barlow @ Ted" href="https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from" target="_self">https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from</A></P><P>&nbsp;</P><P>I've been asked often to help developed and run table top practice for a Cyber Breach response plan - Does&nbsp; your Enterprise have One?</P><P>&nbsp;</P><P>The point made in the above Ted talk is that the way advanced peristent threats (APTs) had evolved and Dark Web&nbsp; 'trading' activities are progressing is that it is not a question of "If your defences and best practices are going to get breached?", but "When ? " .&nbsp; In addition it worth highlighting that Federal Gonvernment set their bar very high - as Gen Hayden highlights in his book " Palying to the Edge ".&nbsp; NIST had developed quite detailed guidelines that we all must follow, yet : Do you have PR and Crisis Management Plan in Place that details steps that your enterprise will have to take when the breach is discovered?&nbsp;&nbsp; Did You develop thi Plan well in advance , practiced it often with third party supervised Table Top Excersises?</P><P>&nbsp;</P><P>Do NOT let your enterprise follow the path of Equifax and Yahoo !</P> Sun, 08 Oct 2017 14:53:38 GMT https://community.isc2.org/t5/Industry-News/Do-you-have-Comprehensive-and-well-Rehearsed-Cyber-Breach/m-p/378#M19 BorisV 2017-10-08T14:53:38Z