Page 53 - Cyber Warnings
P. 53
current information. Organizations might consider using an intranet site for employees,
vendors or others who already have access to the intranet.
8. Take a proactive approach to communicating the positive steps that the organization is
taking to respond to the cyberbreach. Report on the recovery or corrective measures, as
well as the progress of your investigation.
9. Keep promises. If an organization has promised employees that they will be provided
with statements that they can use to respond to calls from customers, make sure to
follow through. If a press conference has been promised at a specific time, ensure that
the spokesperson is there. If customers have been promised additional information as
soon as it is known, deliver it in a timely manner. Avoiding the press or your customers
will only contribute to the suspicion that the company has something to hide.
10. Maintain a comprehensive communication plan. Last but not the least, the above points
should be captured in a comprehensive communication plan which is available to all the
stake holders inside the organization.
Cyberbreaches continue to occur at an ever-increasing rate. How a company handles
communications after a breach can have a significant impact on public perception as well as
customer relations. These communication best practices are critical for creating a positive
perception about the company in time of crisis. It is also a must to have these processed
documented and tracked to see if they are followed appropriately. Conducting mock exercise
and analyzing the responses from different teams for these can help in being better prepared for
when the real attack occurs.
About the Author
Rishi Bhargava is Co-founder and VP, Marketing for Demisto, a cyber security
startup with the mission to make security operations - “faster, leaner and
smarter”. Prior to founding Demisto, Rishi was Vice President and General
Manager of the Software Defined Datacenter Group at Intel Security. A
visionary and technology enthusiast, he was responsible for delivering Intel
integrated Security Solutions for datacenters. Before Intel, Rishi was Vice
President of Product Management for Datacenter and Server security products
at McAfee, now part of Intel Security. As an intrapreneur at McAfee, he
launched multiple products to establish McAfee leadership in risk & compliance, virtualization,
and cloud security. Rishi joined McAfee by way of acquisition in 2009 (Solidcore, Enterprise
Security Startup). At Solidcore, he was responsible for Product Management and Strategy. As
one of the early employees and member of the leadership team, he was instrumental in defining
the company's product strategy and growing the business; Rishi has over a dozen patents in the
area of Computer Security. He holds a B. S. in Computer Science from Indian Institute of
Technology, New Delhi and a Masters in Computer Science from University of Southern
California, Los Angeles. Rishi is passionate about new technologies and industry trends and
serves as an active advisor to multiple startups in silicon valley and India.
53 Cyber Warnings E-Magazine October 2016 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
