Yeo Siang Tiong, general manager for Southeast Asia at global cybersecurity firm Kaspersky, says the company has some recommendations to ensure businesses can get back on track sooner following a data breach, strengthening their IT security operations.
1. Assess the situation
Assess the risk to customers from the data breach. Risk assessment lets you decide the next steps, including whether to report the breach. If it’s a high risk to customers, you must inform them without undue delay.
2. Keep your CISO
Unless the incident can be directly attributed to an irreversible failure on the part of the chief information security officer (CISO), don’t fire him or her to appease customers or shareholders. Your CISO will have the experience and knowledge you need to see you through this…
