Re: The role of communications in data loss/breach incidents

["Webb, Justin" <justin.webb () MARQUETTE EDU>]

We do as well. An organization should have a vested interest in having
statements of this nature vetted by those outside of the IT sphere.
Sometimes we (the collective IT universe) forget what's outside of our
microcosm and to me, it shouldn't be a lamentable step, but an essential
one.

Sincerely,
 
Justin P. Webb, GC(IH+FA)
Security Analyst
IT Services, Marquette University
414-288-4196
justin.webb () marquette edu





On 5/17/11 7:40 PM, "Mclaughlin, Kevin (mclaugkl)"
<mclaugkl () UCMAIL UC EDU> wrote:

> UC does.
>
> Kevin L. McLaughlin
> AVP, Information Security & Special Projects
> University of Cincinnati
>
>
> On May 17, 2011, at 5:23 PM, "Dave Kovarik"
> <david-kovarik () NORTHWESTERN EDU> wrote:
>
> > NU does... All incident notification with the outside world, including
> > letters, information posted to the web,
> > communications to news outlets, etc. requires review/approval by
> > General 
> > Counsel and University
> > Relations (our communications experts) before issuance.  Both Counsel &
> > Relations personnel are standing
> > members of the incident response team.  One lesson learned: push the
> > notification and news as quickly as you can.
> > Dave Kovarik
> > Northwestern University
> > 847-467-5930
> > ***
> >
> > On 5/17/11 12:39 PM, Nicole Kegler wrote:
> > > Greetings everyone,
> > > Most of you understand the importance of communications in data loss
> > > or breach incidents. This article that came out on a blog for crisis
> > > communications experts focuses on the lack or ineffective use of
> > > communications in these situations:
> > >
> > > http://managingoutcomes.wordpress.com/2011/05/16/data-security-is-a-grow
> > > ing-crisis-risk/
> > >
> > > How many of you involve a communications director or manager in your
> > > crisis or risk management plans?