Merchants 5 Step Guide
To PCI Compliance
|
ISO / Acquirers 5 Step Guide
To PCI Compliance
|
|
Step 5: Perform a response audit after the event
Once the data breach is contained and letters sent to the affected customers, businesses, law enforcement and any other third-party entity, this is the time for all members of the rapid response team to document the data breach from beginning to end.
Each member of the team should maintain a log that contains the following information:
- All information concerning the specific breach
- All procedures followed, from the beginning to the containment and aftermath of the data breach.
- Document any outsourcing to third-party companies, which took place during the breach, and add any documentation from said third-party concerning the data breach.
- Document problem areas, if any, within your department.
- Publish a list of any resources used during data breach notification, such as the FTC website, or other information and supply it to the rapid response team, customers and third party vendors.
Test rapid response plan
Periodically, your organization should practice utilizing the data breach plan from start to finish.
Since one of the most prevalent data breach incidents involves unsecured workstations, laptops, desktops, instruct your employees to properly secure all storage devices, etc.
Pay attention to IT issues, including monitoring your IDS systems. When is the last time you checked your IDS systems? When did you view logs of your Active Directory servers? Are you deleting employee user information, once the employee leaves the organization? Are you using encryption across all of your systems?
Routinely check everything at your organization, whether it's monthly, quarterly or yearly, as it relates to data transmission and storage.
 Print this page
 Send this page to a friend
|
|
