GDPR Incident Response Guide

Learn more about our Enterprise Incident Management Services here.

The cost of a breach within the GDPR regulation is staggering –

up to 20M euro for a single incident.

If ever there was a time to ensure your organization is ready with effective internal incident response capability, it’s now. Optiv can help.

Incidents and compromises can create major issues for your staff who may not possess the unique skills to assess and investigate an attack. The right partner will help you respond and recover with advice, guidance and hands-on expertise. Look for a partner who provides 24x7x365 on-call response as well as security and malware experts to remediate compromised systems and limit organizational risk.

CHOOSE THE RIGHT PARTNER

Having an up-to-date incident response plan and playbooks is the first crucial step. But the plan alone doesn’t ensure your organization can properly execute during an incident. Waiting until an incident takes place creates the opportunity for undiscovered gaps to be uncovered, costing you valuable time and money. Conduct table-top exercises to validate your plan and address any outstanding deficiencies. For advanced testing, consider hybrid tabletop wargaming exercises or even red team exercises to test your team’s practical capabilities.

TEST YOUR PLAN WITH YOUR TEAM

Planning and preparation can mean the difference between efficient recovery and failure to recover when a breach occurs. A strategic IR plan can help ensure consistency when managing a major security incident, with actionable plans for containment, remediation, and communications. Tactical playbooks enable technical security analysts and incident responders to manage both routine events and incidents as well as highly-unlikely-yet-catastrophic incidents. These pieces, when combined with good security hygiene such as routine penetration testing, vulnerability management, training, and proactive threat hunting, create a tailored strategy and roadmap to meet your business needs.

DEVELOP A PLAN AND PLAYBOOK

Preparation and readiness are essential to minimizing damage when an incident happens. By understanding how mature your incident management program is today and developing a strategy to improve that maturity, your organization can take the steps necessary to ensure that cybersecurity incidents can be managed in a way that aligns your organization to GDPR requirements. An effective Incident Response Readiness Assessment will help ensure that your capability is measured against today’s threat landscape and industry best practices.

CONDUCT AN IR READINESS ASSESSMENT

Conducting an inventory of both your hardware and software assets is the first step in being able to understand what systems you own, what data is stored on them, and where they are located. If you don’t know what protected data you have and where it exists on your network, you cannot effectively fulfill the requirements under Articles 33 & 34.

IMPLEMENT CIS CONTROLS 1 & 2

DISCOVER >

How can you prepare beforehand to make sure your organization is set up for success?

Under articles 33 & 34 of GDPR, you have a 72-hour notification window after becoming aware of a breach.

THE CLOCK IS TICKING

DISCOVER >

How can you prepare beforehand to make sure your organization is set up for success?

Under articles 33 & 34 of GDPR, you have a 72-hour notification window after becoming aware of a breach.

THE CLOCK IS TICKING