Looking for insight on how companies organize incident response teams, and specifically who leads incident response--is it legal, compliance, IT security, or some other team that typically owns the process?

like
Posting as :
works at
You are currently posting as works at

It should be a combination of all of the above working in concert. There should be clearly established points of contact (and how to reach them on non-work numbers/emails) and who has authority to make business decisions.

like

Agree but am looking more to understand who companies are tagging to make sure all action items are completed so that there aren't too many cooks in the kitchen.

Generally you’d want legal and infosec roles coordinating response activities. As to other stakeholders, consider involving ops (for business impacts), dev or IT (for remediation implementation, e.g.) , finance (for insurer notifications, payments, etc.), corporate comms or marketing (for PR messaging purposes), and someone to act as a liaison to the board/senior leadership. Be careful in how you frame your incident response plan, and make sure that there is some sort of risk-based escalation criteria to activate the full team, as well as a process for resolving lower-risk incidents. Most importantly, make sure you train the relevant parties on the plan, and test it periodically. Otherwise I can guarantee that the plan is just going to sit there unopened in the event of an actual incident.

like

There seems to be 2 ways to lay it out. 1 is where each team has their own IR setup and 1 where it's company global. With either direction you can streamline the process by using the same reports and structure. Mostly it depends on the size of your company and the maturity of your monitoring and alerting system. If manual alerts need to be fired and a clear owner isn't established, generally you can go to Production Operations and they can orchestrate

Related Posts

GM!
im 10 weeks into my contract as a PO at a large satelline/wireless provider (synonym: plate) and the company has offered to bring me on as an internal employee.

currently i am hourly contractor at a rate of $50/hr + 2k sign on

the salaried offer is for 104k ( $52/hr)/ no bonus

problem here is that i work 48-52hrs/wk & get paid overtime, so taking this offer would actually be a paycut by about $250-300/wk

how / what should i negotiate as a fair compensation package

like

Anyone have any go to sources for healthcare costs in retirement? Total planning Suite doesn’t have that function built in their planning software. Can’t ignore that huge cost in retirement!

like

Things to do in Fort Lauderdale? Traveling solo, female mid 30s.

like

So after extensive research, and taking up 2 hours of your time, we found that millennials enjoy things like Facebook and Instagram.

likefunnysmart

What fun things do you like to grab while on the road for the kiddos?

Gave my two weeks notice and literally was told straight up to not charge any time on my engagement. I obviously don’t care about utilization but y’all this place is crazy

likefunnyhelpful

Hey Folks, Any idea on what's the average time to get Staffed on Engagement at Infosys Consulting..

like

Would you quit MBB for FAANG PM? In North America.

like

Being a realtor is not what I expected! I was so excited when I joined being younger, but nowadays it's all work and too little time off. It's a bit frustrating because I'm not sure where to go from here. I've been doing this for 5 years now. Any help on what choice to make? I do not have a backup plan.

like

Most important things to know about whiskey and scotch when attempting to look informed? Meeting some parents this weekend and this is their wheelhouse. Please help

like

LA based strategy directors, or those that would like to be, DM me.

like

What are the other websites to get opportunities in UK other than LinkedIn

𝐌𝐚𝐩𝐩𝐞𝐝 𝐃𝐨𝐦𝐚𝐢𝐧 𝐀𝐭𝐭𝐫𝐢𝐛𝐮𝐭𝐞 𝐍𝐚𝐦𝐞 𝐟𝐢𝐞𝐥𝐝 : 𝐁𝐂𝐔𝐈

#SAP #SuccessFactors #BCUI #Integration

Post Photo

Hi Sharks,

Need to understand 26 lpa in Bangalore is good or in Montreal Canada 95000 cad dollar.

like

Accenture AM level 8 or Capgemini Manager C2 Level? Which one should I join? Package is nearly the same.

Husband is saying he wants to make the move to start a company. Totally love him and support him. Wld be lying if I said I wasn't nervous. Does anyone have experience supporting entrepreneur spouse?

like

What’s on buy or sell list going into the long weekend?

like

I would follow elliotrades on twitter and giancarlo buys tokens on Youtube. They drop some pretty good alpha

likeuplifting

Hi fishes, any one working on SAP success factors module..please respond

Any job opportunities for people with good memory in india . Kindly suggest

Additional Posts in Privacy Law

Looking for law firms that will hire summer associates into privacy/data breach/cybersecurity roles. Have experience in this area, am assured that firms are “growing their practice” but can’t figure out firms to target. Lower T14 median student with 2 years compliance experience.

like

As privacy experts, what are everyone’s thought on the Metaverse? Practical? Issues?

like

Hey all. Was wondering if anyone has had a payrise with JP Morgan at the end of the year. If so, what % did you get? If any?

like

Any good webinars or articles to help refresh knowledge of the CCPA/CPRA before an interview. I’ve been practicing in the field for a few years but just want to feel more confident on substance. Obviously looking at IAPP resources, but anything specific?

like

My client (small-ish business) suffered a data breach and needs to offer free credit monitoring to a small number of MA individuals. Any recommendations for monitoring services?

like

Is there any additional tangible value in getting the CIPM in addition to the CIPP (I.e., will a company hire a candidate with both the CIPP and CIPM over one with just the CIPP, if both candidates have same YOE)?

like

Hi all! I’m inclined on taking up the CIPM training and certification exam. I’m already a certified Data Protection Officer in the Philippines. I intend on skipping CIPP as it applies to the US and EU.

How difficult was the exam? Can you share your experience studying for the CIPM exam? Is it advisable to skip CIPP?

Many thanks in advance.

like

So as a 30ish yo with a government/PE/tech background and CIPM/CIPP… I’m finding privacy work is just much easier and interesting than other kinds, but still pays plenty well.

Is it too late/inadvisable to go to law school to specifically aim for privacy work?

I just find some firms are unwilling to entertain the idea that anyone but a lawyer has anything relevant to contribute in this space…

like

Anyone lateral from lit to privacy trans and can speak about the experience? Looking to retool but not sure if possible

like

Interviewing for an in house privacy counsel position. I really really want this job. Any tips? Thank you!

like

Hi all! Has anyone else been interviewing for in-house, mid-level Privacy counsel roles? I have found these interviews to be extremely demanding (11+ 45min-1hr interviews with technical/legal specific questions + 10hr writing assessment). Has any one else experienced this? Is anyone else finding that these assessments are becoming more of a norm in the interview process for privacy roles? Thoughts on this or advice? Thank you!

like

Planning to take the CIPP and CIPM. Will be doing self-study. What is the “book” everyone refers to for studying? Is it just the “study guide” the IAPP sells? Does anyone know if the study guides and sample questions you can buy on amazon are sufficient to use for passing? Appreciate any and all advice.

like

If I was Meta or Google or Amazon, why wouldn’t I just pull out of the EU/UK altogether and avoid all the GDPR and Digital Markets Act / Digital Services Act issues? I get that fundamentally it’s as simple is revenue from those areas, but has anyone thought critically about whether direct + indirect compliance costs + risk-adjusted penalties for violations are greater than that revenue?

funny

Should I take the CIPP/US or CIPP/E first? Im based in the US.

like

Hi All, trying to take my CIPP/E exam. What are some good resources? Is it difficult to pass? Any tips? TIA

like

I was wondering if anyone did the CIPP/US cert and had any recommendations for studying. I planned on just buying the book, reviewing the terms, making an outline/flash cards. Overkill? Not enough? Also, how many hours did you study?

like

What are your thoughts about a US privacy/cyber associate sitting for the Irish Qualified Lawyers Transfer Test? Practicing attorneys from CA, NY, and PA can sit for the test and become a certified foreign lawyer. Is there value to clients or a law firm? I can see both sides of it.

like

What are the best resources you’ve found that walks you through step-by-step, the data incident management process and what to ask your client?

like

Thoughts on Holland & Knight for data privacy? Respected practice?

like

How long did the CIPP/CIPM take you? Was it hard?

like

New to Fishbowl?

Download the Fishbowl app to
unlock all discussions on Fishbowl.
That was just a preview…
Sign Up to see all discussions
  • Discover what it’s like to work at companies from real professionals
  • Get candid advice from people in your field in a safe space
  • Chat and network with other professionals in your field
Sign up in seconds to unlock all discussions on Fishbowl.

Already a user?
Login here

Share

Embed this post

Copy and paste embed code on your site

Preview

Download the
Fishbowl app

See what’s happening in your industry
from the palm of your hand.

A phone with Fishbowl app

Send download link to your phone

OR

Scan your QR code to download
Fishbowl app on your mobile

By continuing you agree to Terms of Use and Privacy Policy.

Messaging rates may apply

Download app

Sign up for free to view this conversation on Fishbowl

By continuing you agree to Terms of Use and Privacy Policy

Already have an account? Log in

Sign up for free to continue using Fishbowl

By continuing you agree to Terms of Use(New) and Privacy Policy(New)
Messaging rates may apply

Already have an account? Log in

For account settings, visit Fishbowl on Desktop Browser or

General

Legal