Assume Breach
If your organization experienced a breach of sensitive customer data tomorrow, how confident are you that your plans would allow you to confidently react and manage the reactions of external and internal stakeholders?
Research shows that how an organization reacts to a data breach has more impact on its reputation than a breach occuring. Consumers and business partners realize that preventing every breach from occurring may be unavoidable, but they do expect an organization to communicate quickly and completely about how they are reacting to the breach and the steps that they are taking to prevent reoccurrence.
Unfortunately, many organizations focus heavily on putting controls in place to prevent a breach from occurring and are caught out when a breach does occur. Our Assume Breach solution helps you to plan for the worst, so that if you are still developing your control framework when a breach occurs, you are able to react appropriately and confidently, maintaining customer confidence and reducing reputational damage.
Do you know what the data breach laws are in each state and what requirements they have around notification and response? We do.
Do you understand the common mistakes that companies make when they are breached? We do.
If you are open to considering a pragmatic approach to managing this issue - contact us today to discuss Assume Breach.
Research shows that how an organization reacts to a data breach has more impact on its reputation than a breach occuring. Consumers and business partners realize that preventing every breach from occurring may be unavoidable, but they do expect an organization to communicate quickly and completely about how they are reacting to the breach and the steps that they are taking to prevent reoccurrence.
Unfortunately, many organizations focus heavily on putting controls in place to prevent a breach from occurring and are caught out when a breach does occur. Our Assume Breach solution helps you to plan for the worst, so that if you are still developing your control framework when a breach occurs, you are able to react appropriately and confidently, maintaining customer confidence and reducing reputational damage.
Do you know what the data breach laws are in each state and what requirements they have around notification and response? We do.
Do you understand the common mistakes that companies make when they are breached? We do.
If you are open to considering a pragmatic approach to managing this issue - contact us today to discuss Assume Breach.
Traditional Approach
- Risk Assessment
- Try to understand where sensitive data exists
- Perform extensive (and expensive) data mapping
- GET BREACHED
- React to breach using normal incident response plan which was not designed to cope with this situation and will not clarify how each State requires you to notify affected people.
- FAIL
Assume Breach
- Assumption breach may occur no matter what preventative controls exist
- Work with Privacy, Public Relations and other experts to develop internal and external facing response plans
- Test response plans
- Once plan is in place and tested - then perform preventative activities to reduce likelihood of breach occuring.
- GET BREACHED
- Respond successfully
- Realize minimal impact to your business.