Steps for Creating a Cyber Incident Response Plan

Over the past year, cyber attacks have been on the rise. Although many small business owners believe cyber criminals will only attack large enterprises or bigger industrial companies, they are sorely mistaken. With a study reporting that 76% of small businesses have been attacked in the past year, it’s important now more than ever to have a game plan for when the hackers come after you.

While cybersecurity often entails security defenses like firewalls and internet encryption, you’ll also need to be prepared with a cyber incident response plan to stop an attack in its tracks. To help you protect your livelihood and small business, follow these steps for creating a cyber incident response plan.

1. Prepare

Begin by preparing your business and team by putting in place a strategy and protocols for when a cyber incident does happen. Outline who is responsible for tasks like locating the breach and triaging the threat. Additionally, identifying personnel to tackle different work flows will be essential. Someone should be selected as first in command, while others are delegated to handle customer service and legal. Outside vendors should also be vetted prior in case the threat is more than your own team can handle.

2. Detect and Identify

When an incident does occur, it will be time to put your preparation to the test. Have your designated personnel begin identifying the problem with cyber incident response software. They should be documenting information and evidence along the way as they evaluate the type of threat, size, severity, and location.

3. Contain