Companies must make a myriad of decisions in the first 48 hours after a breach that will impact the rest of the breach investigation. At the recent Georgetown Cybersecurity Law Institute, a panel of outside and in-house counsel and a forensic investigator shared their advice about breach response, including a “quick start” guide, the common mistakes they see companies make during the initial response, what outside counsel will ask when they are contacted about a breach, what to look for (and what to beware of) when choosing a forensic team, how to preserve privilege throughout the investigation, and how to know when to stop looking for the hacker. See also “A Guide to Developing and Implementing a Successful Cyber Incident Response Plan: From Data Mapping to Evaluation”: Part One (Apr. 27, 2016), Part Two (May 11, 2016), Part Three (May 26, 2016).
Jun. 22, 2016
-
TOPICS
-
ENTITIES
-
PEOPLE
How to Avoid Common Mistakes and Manage the First 48 Hours Post-Breach
- Kathryn PicansoCybersecurity Law Report
To read the full article
Continue reading your article with a CSLR subscription.
Most-Read Articles
-
Feb. 27, 2019
Preparing for the CCPA: Securing Buy-In and Setting the Scope -
Jul. 18, 2018
What to Expect From California’s Expansive Privacy Legislation -
Mar. 6, 2019
Preparing for the CCPA: Best Practices and Understanding Enforcement -
Feb. 13, 2019
Reducing Risk in the Dawn of Equifax and Other Cyber-Related Securities Fraud Class Actions -
Feb. 13, 2019
Practical Ways to Incorporate Security Protection Into Supplier Agreements
CSLR at the Transformational CISO Assembly
The CSLR’s Rebecca Hughes Parker will be participating in Millennium Alliance’s Transformational CISO East Assembly on March 19 and 20, 2019, in Charlotte, N.C. The event brings together prominent security professionals to delve into the top trends affecting the industry today. She will be moderating a panel and hosting two roundtables. More information is here.
Anti-Corruption Webinar: How HPE Is Using Its New T&E Tool to Generate Compliance Metrics
Measuring the effectiveness of a compliance program can be tricky, but some companies are finding ways to use their existing internal controls to generate useful data. Join our sister publication the Anti-Corruption Report (ACR) for a complimentary webinar that explores Hewlett Packard Enterprises’ new travel-and-entertainment-approval tool. On Wednesday, March 27, 2019, from 1:00 p.m. to 2:00 p.m. EDT, the ACR’s Megan Zwiebel will interview Becky Rohr, vice-president of anti-corruption and global trade at Hewlett Packard Enterprises, about how they are using their T&E tool to measure and improve compliance. Registration information is here.