B9：案例研究：网络事件期间危机通信的重要性.pdf

《B9：案例研究：网络事件期间危机通信的重要性.pdf》由会员分享，可在线阅读，更多相关《B9：案例研究：网络事件期间危机通信的重要性.pdf（16页珍藏版）》请在三个皮匠报告上搜索。

1、Case Study:The Importance of Crisis Communications During a Cyber IncidentCase Study:The Importance of Crisis Communications During a Cyber IncidentMay 6-8,2024|Charlotte,NCJoe Layman,Bright HorizonsSusan Zielan,BSI AmericasWelcome!Thank you for joining us today!This is an interactive session Levera

2、ge the knowledge and skillsets from everyone in the room Please participate Allow others to ask questionsAgenda Incident Response Information Gathering Communications Exercises CollaborationEmerging Situation Something doesnt look rightHelp DeskApplication TeamsNetwork TeamLOB Loss of AccessVerifica

3、tionHow We RespondedDiagnose&TroubleshootTeams that may be included:InfoSec Teams Internal SW Tools(Rapid7,Cloudflare)IT Infrastructure Server/Cloud Database NetworkValidate&Isolate How did the bad actor get in?Are they still on the network?Current network location Lock them outActivate Incident Res

4、ponse and other Plans Information GatheringCurrent situation What happened What is confirmed What may be impacted Who needs to know Escalation and NotificationCyber attack is confirmed.Communicate to internal teams IT Mitigation Business(es)Activate BC Plans Manual operations Incident Commander Make

5、 the next set of decisions Leverage Incident Command System(ICS)What would you do?What next steps need to be taken?What info needs to be conveyed?Who needs to know?When do they need to know?Crisis Communications?Who creates the message?Who approves message content?Who sends the message?Crisis Manage

6、ment Framework Leadership structure R&R for teams Crisis Communications Templates&Content Expectations PracticeInternal and External MessagesInternalWhoWhenContent?Approvers?Methods?Cadence?Updates?Special circumstances?ExternalWhoWhenContent?Approvers?Methods