In response to Clive’s Blog on Smart Thinking about incident response – he couldn’t have picked a worse time. Right in the middle of putting together and planning some of the largest projects we have in the pipeline and organising the day-to-day support work – I did not want to play! (Clive said he wouldn’t censor this!)
However, just like Clive, a hacker wouldn’t care about my calendar.
Your incident response plan needs to be ready to go… whenever.
So I got on with the incident response training exercise.
I was able to change the relevant passwords and documented the effects. I have also updated our Incident Response plan to highlight the people responsible for each service we use. The procedure in which passwords are changed and sent to the relevant parties has been made more secure. How? Well that is a secret, shared between us and any of our clients who buy into our cyber security framework. We do not want to share that information in an open blog post, where threat actors using a bit of OSINT could find out about it!
Not sure what OSINT is? Have a read here to find out how your most innocent of social media posts could let the hack into your organisation:
The Basics of Cyber Security – A quick look at OSINT and Redacting
Why I do not like “Meet the Team” web pages
What next for our incident response training?
We will be having some more meetings on this but it just proves that in order to have business continuity and mitigate any potential threats there should be a procedure for incident response in your organisation and remember prevention is better than cure. Staff training on cyber security is key because no matter how much tech we have in place for getting this under control it is almost always human error that leads to a successful hacking attempt.
CyberAwake
Our services such as CyberAwake and our user training programmes can help train and test your staff with simulated phishing attacks to educate them on the correct response.
All organisations should have an incident response plan in place, if you or anyone you know would be interested in this then please get in touch.
Martin Mayes – by-line and other articles
Further Reading
Incident Response Training I think I have a computer virus…
Featured photo by Leeloo Thefirst