A vital component of operational resiliency lies in having a robust incident response plan. When an incident happens, a key element of being able to successfully identify and respond to the incident lies in timing.
Seconds matter, and when an anomaly is identified there is generally no time to establish an investigative process. The goal of incident response is to carry out a predetermined plan to minimize damage and recovery cost.
In conjunction with FFIEC guidance and each financial institution’s administrative and technological controls, AaSys Group will formulate an Incident Response Plan. This will include Playbooks that correlate policy guidance and controls-in-lace to ensure appropriate processes and actions are taken during an incident. The mature Incident Response plan will have forms developed for correlation with Playbook activities.
Testing is an integral component of a successful incident response plan. AaSys Group’s Security Consultants can create real-life scenarios, and these can be reviewed during Tabletop Testing. The Security Consultant will proctor the test and discuss the roles of each team member as well as the process to be followed. Routine testing also provides training opportunities for staff members. AaSys Group will document the exercise and provide recommendations to optimize responsiveness.
During a crisis, there are a volley of settings and configurations to investigate and tasks to complete. A formalized plan allows organizations under attack to concentrate on correctly evaluating the situation and swiftly responding. Forms that are created beforehand, communications that are prepared, and concrete processes to be followed can mean the difference in repelling an attack or being a victim! While no one wants to experience a breach, we all want to be prepared if one happens.