Summary
It’s no coincidence that we’re seeing Scouting founder’s, Robert Baden-Powell, motto (“Be Prepared”) mentioned in numerous cybersecurity and incident response posts of late. In today’s environment of fast-evolving adversaries, expanding attack surfaces and complex environments – being prepared could make all the difference when faced with a likely attack. In a previous blog post, I compared leading incident response life cycles from NIST, SANS and ISO to draw attention to the inclusion of “preparation” in these frameworks. This inclusion highlights that it’s just as critical as any of the more “reactive” phases of effective incident response. But what exactly does incident response preparation entail?
One of the first things organizations will ask themselves is whether they have the people, resources and skills to respond to an incident if it strikes, as well as the tools and technologies needed to detect and investigate an incident. If these capabilities don’t exist in-house, they can be bolstered with the help of incident response service providers or Managed Detection and Response, like Secureworks® Taegis™ ManagedXDR. However, there’s more to preparation than having the people and tools.
Cyber Incident Response Plan
Naturally, organizations think of planning in the context of cyber incident response as having a Cyber Incident Response Plan (CIRP). And they’re not wrong; having a CIRP in place i ..
Support the originator by clicking the read the rest link below.