BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Breach Prep Should Include Rehearsal: Onsite Coverage

From: Audrey McNeil <audrey () riskbasedsecurity com>
Date: Mon, 17 Nov 2014 18:47:02 -0700
http://www.cutimes.com/2014/11/14/breach-prep-should-include-rehearsal-onsite-covera

Casey Boggs, president of Portland-based public relations firm LTPR,
recommended credit unions conduct a crisis rehearsal rather than wait until
a cyber attack occurs.

“Go through a dress rehearsal, go through the communication strategy and
what you’re going to do,” Boggs said at the NASCUS/CUNA Credit Union Cyber
Security Symposium on Friday.

Boggs, the former director of public relations at AIG, said credit unions
need to be prepared before, during and after a data breach.

Typically, when LTPR is brought in to manage a crisis for an institution,
Boggs said the existing communication strategy is very poor to say the
least.

Steps a credit union should take in advance include improving its disaster
recovery plan with communications support, developing a computer security
incident response plan, establishing an emergency task force and
identifying a spokesperson.

“Make sure you have someone who is able to communicate effectively during a
crisis,” Boggs said.

He reminded credit unions that the spokesperson does not always have to
grant interviews to the press during a crisis but can deliver statements
via email or phone instead.

As soon as a breach occurs, Boggs said credit unions must notify regulatory
agencies and their members immediately.

He suggested Twitter as a great tool for providing updates to members about
the situation while Facebook is best for reputation management.

“Concise, unified messaging across all mediums,” Boggs said.

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus 
on the right security.  If you need security help or want to provide real risk reduction for your clients contact us!
Previous By Date Next
Previous By Thread Next

Current thread: