Five ways to prepare for a cyber security incident

At the Cyber Security Incident Management Conference 2017 one of the topics discussed was how organisations can prepare for an incident. The impacts of an incident can result in loss of business and reputational damage, and as 90% of large and 74% of small organisations will experience such an event, it is critical that all businesses put a plan in place to prepare and protect themselves.

Nick O’Kelly, Director of Cyber Incident Management at Deloitte, shared his tactics for preparing for a cyber security incident:

1. Advanced preparation is essential this means implementing codes of practice for people, processes and technology.
2. Advanced logging and forensic readiness is necessary so that if an incident does occur everything can be traced and tracked.
3. Desktop training for all staff should be compulosry as they are an organisations best weapon against an attack.
4. Threat intelligence and hunting allows you to create the right protection against the types of attackers who will threaten your business.
5. End point forensics in the wake of an attack are also important because it allows you to learn from mistakes and increase protection in the future.