When developing a data breach response plan, identifying everyone who must be involved in the plan – as well as at which stages – is key, as is doing so in advance.
“Today, in working on their cyber preparedness, companies regularly involve areas of the company outside information security, including counsel, compliance, senior management and the board, all of which play a really important role in the cybersecurity context,” says attorney Nicole Friedlander, a partner at Sullivan & Cromwell in New York.
“And they’re involving key external parties like outside counsel and forensics firms,” says Friedlander, who previously headed the complex frauds and cybercrime unit at the U.S. Attorney’s Office for the Southern District of New York. “This significantly speeds up their ability to react to a breach and minimizes the risk of confusion and mixed messages that can otherwise result in a crisis.”
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedIn