Skip to content

Recent News

Vital Components to Equip Your Organization for Breach Readiness

By Marissa Rodriguez

To date, 975 breaches have occurred this year resulting in over 19 million records exposed. These numbers demonstrate necessity of breach readiness – it’s not a matter of if a data breach will happen to you, but when. What’s more, these breaches can have a long-term impact on companies. On average,immediately after a data breach, a business’ market share price will decrease an estimated 0.43% and over time these share prices will rise, but at a much slower rate than before the breach.

Prevention is no longer enough

Adding to this complicated dynamic is the fact that new regulations in the U.S. and the EU (like NYDFS and GDPR) demand a 72 hour reaction time to a data breach. Preparing and testing a robust breach readiness plan is the key to success in this environment.

While most companies have an incident response plan, many lack the detail required to actually execute a customer response, and don’t discover this fact until it’s too late.

Common Components of Incident Response Plans

Most incident response plans today include the following components:

  • An internal core team along with their specific roles and contact information
  • An internal communications plan, detailing who needs to be notified when, and how information is shared with the core team and larger company
  • Methods for determining if there was an incident, and whether or not it is notifiable (forensics and breach counsel are absolutely crucial in these processes)
  • Plan for the process of communication externally with customers, media, law enforcement, legal and incident reporting organization

What’s Missing?

One of the biggest misconceptions for breach readiness is that an Incident Response Plan is complete with only the sections mentioned above. In reality, our thirteen years of breach response experience tell us this is not true. To build a response plan that will actually guide you through the critical decisions of your customer response, you must include the details required to execute a solid customer response.

In this blog series we will walk you through what a robust Breach Readiness plan contains, including the following:

  • Notification details – What communications plans do you need for clear and timely internal and external communication?
  • End User Support (Identity Theft Protection) How and with what protections will you support the affected population?
  • Customer Service Care – Who will manage the customer support, what will you say to customers, how will you resolve harm?

No one can ever anticipate when the unexpected happens, but you can take steps to prepare your organization to respond if a breach occurs. This is truly the only way to be ready. Stay tuned to dive deeper into what breach readiness really looks like.

Here is the full blog series:  Part 2Part 3Part 4, and Part 5.

Leave a Reply

Your email address will not be published. Required fields are marked *

[wds_resources_posts hide_posted_on="" featured_posts_only="" ignore_post="8889" hide_featured_image="" tag_location="below_title" post_type="post" term_comparision="ALL" resource_cat="" resource_tag="" post_cat="" post_tag="" heading="Recent News" subheading=""]

Latest News

AllClear ID Named a Leader in The Forrester Wave: Customer Data Breach Notification and Response Services, Q4 2017

AllClear ID is thrilled to announce we were recognized as a “Leader” in The Forrester Wave™: Customer Data Breach Notification And Response Services, Q4 2017 report by Forrester Research, Inc. AllClear ID is one of two Leaders recognized in the report. About the Forrester Wave Forrester Research, Inc. determines the ranking based on 18 criteria […]