Given the heavy reliance on IT and current working from home arrangements, the following questions are critical for every organisation’s planning, response and recovery:
IT Incident Response Plans
An IT Incident Response Plan enables the timely, consistent, and appropriate response to suspected and confirmed security incidents, in order to protect information and assets and minimise harm to individuals / entities that may be affected by the incident.
Such plans are also intended to promote consistency in the way that an organisation prepares for and responds to a security incident, by documenting roles and responsibilities, risk assessment and escalation procedures, and notification requirements.
Click here for further information regarding these Plans.
Like Business Continuity Plans, IT Incident Response Plans should also be regularly tested to ensure that all key stakeholders (usually within the IT team) understand exactly what to do, when to do it, and how take appropriate action.
Simulation testing also increases security situational awareness, facilitates team discussion regarding appropriate incident responses, and identifies gaps and issues in existing IT Incident Response Plans.
Centium has extensive experience partnering with clients to raise cyber security awareness, identify and manage cyber and IT risks, and build resilience. Our ISO 270001 Lead Auditors are highly skilled at translating technical concepts into practical plans and procedures.
We also have a proven track record facilitating scenario tests that enable organisations to quickly realise and address gaps in existing planning documents.
Our approach allows your staff to actively participate in facilitated scenarios and role plays, while we independently observe proceedings. At the end of the workshop, we will debrief with the team, and provide a report on our findings and opportunities for improvement.