Focus on Prevention
Do You Assess? Use risk assessment and pentesting to identify weakness in your technology, processes, and people. Remediate vulnerabilities and minimize attack surface. Train staff to be security aware.
Do You Document? Formulate written Incident Response, Business Continuity, and Disaster Recovery plans. Implement and follow those plans.
Do You Monitor? Use threat intelligence and patch management to identify, analyse, and respond to security events that threaten your network internally and externally.
Focus on Response
Forensic costs – determining how the breach occurred
Notification costs – alerting affected individuals
Credit protection costs – credit monitoring services and fraud alerts
Public relations – to maintain the reputation of the business