In April the United States Department of Justice (DOJ) Computer Crime & Intellectual Property Section (CCIPS) issued a document entitled “Best Practices for Victim Response and Reporting of Cyber Incidents.”
CCIPS is responsible for implementing the DOJ’s national strategies to combat computer and intellectual property crimes in the US and worldwide. CCIPS investigates, and prosecutes computer crimes and works with other government agencies, the private sector, academic institutions, and foreign counterparts to prevent such crimes.
Cyber-risk management is an increasingly important challenge for all organizations no matter what their size or business activity. Cyber-risk is the risk of financial loss, business disruption loss, loss to stakeholder value, reputational harm and legal noncompliance liability that an organization faces as a result of a failure or breach of the organization’s information technology systems.
The best practices document was drafted to assist organizations in preparing a cyber-incident response plan and preparing to respond to a cyber-incident. It includes a review of steps to be taken before a cyber-incident occurs in order to be prepared for the inevitability of such an incident and guidance for responding if a cyber-intrusion or attack occurs.
For a more detailed review of these best practices, click here