“Determining material impact often involves collaboration between IT, legal, finance, and management teams,” according to James Eason, who leads CRA at cybersecurity services firm Integrity360. “Those who play their role must be ready to do so and be fully successful in doing so.”
Essentially, businesses need an incident management response team that has already moved from senior management. “This requires clarification and understanding of response processes and procedures,” Eason said.
CISOs must build relationships within that group before the incident, Roberts says, “so that when it needs to work, the process of evaluating and making material determinations follows a playbook and a sense of shared ownership among key leaders.” in business.”
Source link