As attack methods become more sophisticated and widespread, no organization is immune to suffering a cybersecurity breach. The key to protecting your business is developing controls to make you less of a target and limit potential damage, as well as implementing a comprehensive strategy to react if you fall victim to an attack. Learn how you can position your organization to discourage and respond decisively to an attack if one occurs. Reach these goals through ten key steps to reduce sophisticated cyberattacks on your business.
1. Back it up
Back up your systems regularly and securely, and keep an offline copy. Test your backup restore process.
2. Have a plan
Your organization must have an incident response plan (IRP) in place and run through it with various cyber playbooks.
3. Get cyber insurance
Some policies may require a certain level of organizational cybermaturity, and most can help handle the costs associated with a cybersecurity incident.
4. Gather a team
Have a team ready to assist when needed, including people from internal/external IT, HR, legal and cybersecurity/incident response teams, as well as other key stakeholders.
5. Test your environment
A vulnerability assessment/penetration test of your environment can help determine any gaps to be filled. Tests should be conducted twice a year or during technology changes.
Back up your systems regularly and securely, and keep an offline copy. Test your backup restore process. Your organization must have an incident response plan (IRP) in place and run through it with various cyber playbooks. Some policies may require a certain level of organizational cybermaturity, and most can help handle the costs associated with a cybersecurity incident. Have a team ready to assist when needed, including people from internal/external IT, HR, legal and cybersecurity/incident response teams, as well as other key stakeholders. A vulnerability assessment/penetration test of your environment can help determine any gaps to be filled. Tests should be conducted twice a year or during technology changes.
Reactive steps
You’ve fallen victim to a cyberattack and are not sure of the next steps.
6. Implement your IRP
A well-crafted and well-rehearsed IRP can save you time when dealing with a cyber incident.
7. Submit a claim
Call your cyber insurance provider for advice and next steps in making a claim. Additionally, RSM can help you understand what insurance providers are looking for when it comes to submitting a cyber insurance claim.
8. Make it privileged
Breach counsel can help determine what constitutes PII, PHI, PCI or other protected/ regulated data, and when notification is required. Retaining breach counsel also protects your communication under lawyer-client and litigation privilege.
9. Get the right help
Recovering too quickly from a breach may lead to a lack of forensic evidence needed for a claim. RSM can help you gather what is required for an investigation, while assisting in the timely recovery of your systems.
10. Compile lessons learned
Once the breach has been contained and investigated, RSM can work with you to determine lessons learned and additional steps to mitigate future cyberattacks.
A well-crafted and well-rehearsed IRP can save you time when dealing with a cyber incident. Call your cyber insurance provider for advice and next steps in making a claim. Additionally, understand what insurance providers are looking for when it comes to submitting a cyber insurance claim. Breach counsel can help determine what constitutes PII, PHI, PCI or other protected/ regulated data, and when notification is required. Retaining breach counsel also protects your communication under lawyer-client and litigation privilege. Recovering too quickly from a breach may lead to a lack of forensic evidence needed for a claim. Gather what is required for an investigation while assisting in the timely recovery of your systems. Once the breach has been contained and investigated, determine lessons learned and additional steps to mitigate future cyberattacks.
Related insights
Recorded webcast
Cybersecurity update: Sharpening the focus on security
Hear from our cybersecurity professionals to discuss ransomware attacks and business takeover threats, information and data security, privacy protections compliance and outsourcing cybersecurity.
