Virtual Cyber & Technology Risk Management Forum

First page Table of contents Previous page 160 Next page Last page

Creating an Incident Response Plan

Incident Response Plan should contain at minimum: • Define Types of Incidents • Incident Threat Assessment • Incident Response Team • Incident Escalation Procedures • Procedures for Handling General Incidents • Procedures for Handling Specific Incidents • Procedures for Handling Service Provider Incidents • Procedures for Handling Physical Theft or Loss Incidents • Procedures for Inappropriate Use • Procedures for Customer Notification • Contact Information • Requirements for Testing • Integration with BCP and Vendor Management

© SBS CyberSecurity, LLC www.sbscyber.com

24

Made with FlippingBook Publishing Software