Denial of Service Attacks

spinningPlatesiStock_000011904878_LargeIt’s a dangerous world for protected information, with major breaches in the news and a challenging cyber-threat environment behind the scenes.  Cyber theft for competitive advantage, denial of service attacks, ransomware intrusions, and even state-sponsored espionage are real dangers, as are conventional breaches compromising individuals’ protected information.  State PII breach notification obligations loom large for customer and employee data.  For BtoC organizations, cardholder data can also be at risk.  And HIPAA/HITECH imposes its own breach response requirements for employers’ self-funded health plans.

Organizations must be prepared to respond to data breaches, but effective response is no small matter.  There are ten different channels of response activity for an organization that has suffered a security breach:  Security, Legal, Forensic, Law Enforcement, Regulators, Insurance Coverage, Public Relations, Stakeholders, Notification, and Personnel Management.  Most of these activities are involved in every breach, and all must be dealt with in significant breaches.  These activities are not sequential.  They play out in parallel, with interrelated effects … and with the response clock ticking.

Continue Reading The Ten Key Activities for Effective Data Breach Response – Are You Prepared?