Step 3: Educate employees on breach/data security

All organizations should have a current and up-to-date security policy, including a risk assessment, which should be consistently updated and disseminated to all employees and contractors.

Every employee should have a copy of the policy and indicate that they have read and understand the procedures, before a data breach occurs.

Educate employees not only about data breaches that result from a hacker or another external cause, but educate them on personal responsibility as it relates to physical security the perils of leaving a laptop in an open office, or other physical vulnerabilities that can result in a data breach.

Having a pre-breach response plan in place, not only validates your organization's stand against data breaches, but it instills a trust in consumers that your organization has taken precautionary steps-before a data breach-to address any current security loopholes.

                    

Print this page

Send this page to a friend

Data Breaches Part I - Is it possible to prevent the inevitable? Introduction Step 1: A Good Defense is an Offense Step 2: Perform a company-wide risk assessment/inventory Step 3: Educate employees on breach/data security Step 4: Create a pre-breach containment and communication plan Step 5: Create a rapid response and internal audit/compliance team Epilogue: Spend now or pay later Data Breaches Part II Five Steps to manage a data breach Introduction New changes to PCI DSS Self Assessment Questionnaire Step 1: Spot/investigate the breach Step 2: Circle the wagons: Deploy the rapid response team Step 3: Create a Notification Plan Step 4: Implement the Notification/Communications Plan Step 5: Perform a response audit after the event Navigating state disclosure laws Outsourcing data breach response to a third-party Recommended reading PCI Compliance Polls Are you currently PCI Compliant? Yes No Working towards compliance Why are you looking at PCI Compliance Required By Credit Card Processor Required By Bank Want to meet industry standards Looking to secure network What merchant level do you fall under for PCI Compliance? Level 1 Level 2 Level 3 Level 4 I have no idea View PCI Merchant Level Results View All PCI Compliance Poll Results EV SSL Certificate Guide Sponsored Listing: