"I'm an Attorney and a Certified IT Engineer."
– Chris Maes
The Cyber Law Office of Maes, Ltd. can provide businesses with the legal guidance necessary to develop and maintain a comprehensive Cybersecurity Incident Response Plan (CSIRP). When cybersecurity events, incidents, or breaches arise, business leaders need to be prepared and know what to do. Maes, Ltd. can help you achieve these goals.
In the aftermath of a security incident, or a full-blown security breach, it is not uncommon for there to be panic and confusion regarding how best to respond. Nevertheless, for businesses that take the time to develop and maintain a CSIRP, all the incident response team needs to do is follow the plan. With a properly prepared CSIRP in place, there is no guesswork regarding the best plan of action. Everyone knows in advance what their roles are and what they need to do to help the business recover.
In contrast, when businesses do not take the time to prepare and maintain a CSIRP, undoubtedly, they are going to struggle when security incidents or breaches arise. Common problems include: mixed messaging to the public and regulators since a single spokesperson has not been identified; overlapping work between incident responders, since it is unclear who should be doing what; and unintentional spoliation of evidence since digital forensic techniques for the preservation of evidence are not being followed.
Moreover, without a CSIRP, it is likely that data breach notifications will not be followed. Depending on the type of data improperly accessed, viewed, destroyed, or corrupted, there may be requirements to notify affected customers and regulators within certain timeframes. For example, the European Union General Data Protection Regulation (GDPR) has a data breach notification requirement of 72 hours. If these timeframes are missed, accidentally or not, punishing fines by regulators may be imposed – making a bad situation worse.
Fortunately, the problems associated with not having a CSIRP can easily be avoided. By taking the time to develop and maintain a comprehensive CSIRP, business leaders can rest assured knowing that when (not if) they become the target of a cybersecurity attack, their teams are prepared and know how to respond.
Retain Maes, Ltd. for Legal Guidance Concerning How Your Business Can Develop and Maintain a CSIRP
The creation of a CSIRP requires input from every department of a business, including IT and legal. Chris Maes offers businesses a unique blend of skillsets in this regard, since in addition to being a data privacy and cybersecurity attorney, he is also a certified IT engineer. Chris’ legal knowledge and engineering expertise in the IT disciplines of networking, cloud computing, and cybersecurity (hyperlink) ensure that the CSIRPs he develops have the technical depth necessary to be effective.
For example, effective CSIRPs must address the four lifecycle stages of a security breach response. These lifecycle stages are:
- Detection and Analysis
- Investigation, Containment, and Mitigation
- Recovery and Notification
- Post-Incident Review
Each of these lifecycles have numerous parameters that must be addressed in the CSIRP for it to be useful. Otherwise, the CSIRP will not be worth the paper it is printed on.
Accordingly, since every business is different, business leaders that retain Maes, Ltd. can take comfort knowing that the CSIRP produced will be customized for their respective business. With CSIRPs, there are no cookie cutter templates that can be thrown together overnight. Rather, CSIRPs must be developed based upon the people, processes, and technologies available to the business. This meticulous attention to detail is what will make the CSIRP an impactful document when it is called upon in the face of adversity.
If your business is in the Greater Denver Area and you are seeking legal guidance for the creation of a comprehensive Cybersecurity Incident Response Plan, contact the Cyber Law Office of Maes, Ltd. You can schedule a consultation today by calling (720) 248-8252 or by using the form below.