Register
In case of a suspected data breach, what course of action should a chief information security officer (CISO) take
89.7k views
3 votes
In case of a suspected data breach, what course of action should a chief information security officer (CISO) take

User Vladimir Matveev
by
5.3k points

1 Answer

6 votes

Answer

1. Assemble his team

2. Find reason for breach

3. Evaluate what was lost

4. Ensure password change

Step-by-step explanation:

In case of a suspected breach, the Chief information security officer should first of all assemble his incidence response team. This team should have representatives from all areas of the organization.

Then the reason for the breach and how access was gained has to be found out. An evaluation of what has been lost in the breach would be carried out and it's likely impact on the company.

In case credentials were stolen the CISO has to ensure that the employees change passwords. Also he has to notify all the necessary parties about the breach.

The CISO has to ensure that all employees are trained properly on security and they comply to security policies.

User Sammyo
by
4.4k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

5.3m questions

6.9m answers

Other Questions

Why is it important to study in a quiet well lit area A can you read it out loud and not bother anyone B you can focus on your studying without distractions C reading books in a dark too Will strain your
What is the first step you would take to create a table of authorities?
To apply a style to a paragraph, the first step is to position the insertion point in the paragraph. True or False
What machine listens for HTTP requests to come in to a website’s domain?
Certain files, such as the ____ and Security log in Windows, might lose essential network activity records if power is terminated without a proper shutdown. a. Event log b. Password log c. Word log d.
Link Copied!