An organizational cybersecurity strategy is not complete without an incident response plan. In a recent post, cyber-defense firm Exabeam highlights three elements of incident response: people, processes, and technology/tools. The post discusses the people that should compose the incident response team, including cross-organizational stakeholders who develop and govern the incident response plan. The post also covers the execution of a six-step incident response plan, including processes for identifying a security incident, containing the damage, communicating the outcomes, and applying lessons learned. Finally, since you will not find what you cannot see, Exabeam includes a matrix of investigation tools that, when properly configured and maintained, are key to the incident response process. Proactively developing plans for how utilities will respond to cyber incidents is critical for recovering from such events quickly. An effective cyber incident response plan will limit damage, increase confidence of partners and customers, and reduce recovery time and costs. Read the article at Exabeam
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!