Provide an incident response plan to respond to incidents
Many organizations are not prepared to manage an incident. Panic therefore occurs when an incident occurs… So draw up a management plan and keep it up-to-date, this will help you in the event of an incident.
Every organization will sooner or later face a cyber security incident. The recent attacks show that no activity domain is spared. Good incident management is therefore essential for the survival of the organization.
The Incident Response Plan describes what needs to be done in case of an incident, depending on the type and severity of the incident. In the event that you do not have an actual incident, make sure to test your Incident Plan at least once every year. Senior Management, Communication and Legal should also be included in the test.
Do not forget to include your hosting partners, cloud partners, managed service partners and external service providers into your Incident Response Plan. Make sure they are also aware of your plan and participate in any tests you perform