Planning for the seemingly unlikely event of a severe cybersecurity incident seems unwieldy and time-consuming for many organizations. But consider this: According to the Ponemon Institute, 90% of ...

When a cyber incident occurs, quickly discovering it — and shutting it down — is crucial. Having an incident response plan in place can help position state and local governments to swiftly react and ...

Quick, find a copy of your agency’s cybersecurity incident response plan. Pull that binder off the shelf or call up an electronic copy. OK, now that you have it, let me ask you a few questions. How ...

It’s time to update your incident response policies. Typically, an incident response plan lays out a process of identification, containment, investigation, attribution, remediation and communication.

Many security teams are operating with incident response plans that haven’t been updated — or even looked at — in months or years. That’s a big mistake. While revising documentation is nobody’s idea ...

Joseph Carson, Chief Security Scientist at ThycoticCentrify, offers a 7-step practical IR checklist for ensuring a swift recovery from a cyberattack. In a startling discovery, a recent report found ...

Doug Bonderud is an award-winning writer capable of bridging the gap between complex and conversational across technology, innovation and the human condition. 2020 was a recording-breaking year for ...

Tanya Candia is an international management expert, specializing for more than 25 years in information security strategy and communication for public- and private-sector organizations. State and local ...

Cyber security incidents have transitioned from potential risks to operational certainties. The constant noise of attempted cyber intrusions, security lapses and IT service events requires all ...

Every organization that monitors for security threats must have a plan for handling a threat once it's discovered. Avoiding cyberthreats entirely would be ideal, but that is not reality. An incident ...

The NCIRP was first released in 2016. The updates include pathways for non-federal groups to get involved in responding to devastating cyberattacks. America’s top cyber agency is out with an updated ...

His framework centers on five incident types most likely to impact K–12: ransomware attacks, social engineering, data ...