• |

Jun. 22, 2016

How to Avoid Common Mistakes and Manage the First 48 Hours Post-Breach

  • Kathryn Picanso
    Cybersecurity Law Report

Companies must make a myriad of decisions in the first 48 hours after a breach that will impact the rest of the breach investigation. At the recent Georgetown Cybersecurity Law Institute, a panel of outside and in-house counsel and a forensic investigator shared their advice about breach response, including a “quick start” guide, the common mistakes they see companies make during the initial response, what outside counsel will ask when they are contacted about a breach, what to look for (and what to beware of) when choosing a forensic team, how to preserve privilege throughout the investigation, and how to know when to stop looking for the hacker. See also “A Guide to Developing and Implementing a Successful Cyber Incident Response Plan: From Data Mapping to Evaluation”: Part One (Apr. 27, 2016), Part Two (May 11, 2016), Part Three (May 26, 2016).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Upcoming Webinar on the Global Reach of the GDPR

In a connected world, the GDPR exerts immense influence across a vast digital and geographic territory – but maybe not as far and wide as you think. The latest official guidelines on the legislation’s extra-territorial scope refine provisions that extend GDPR across borders to non-E.U. activity. Join CSLR senior reporter Matt Fleischer-Black and webinar panelists Hunton Andrews Kurth partner Bridget Treacy and Refinitiv’s chief privacy officer Vivienne Artz as they voyage around the earth with GDPR in a complimentary webinar on March 5, 2020, from 11am to 12pm ET. Registration information is here