Workshop B – Tabletop Exercise: A Practical Step-by-Step Plan to Cyber Incident Response
Nathan D. Fisher
Managing Director
StoneTurn
Guillermo S. Christensen
Partner
K&L Gates LLP
Registration opens at 1:00 pm
Join this interactive segment with hypothetical scenarios to work through expected and lesser-known scenarios, actions and outcomes. Delve into the essential best practices and strategies for rolling out an effective action plan, and tackling hurdles to incident response:
- Determining the response to an IT issue that doesn’t get raised to the board or senior management
- Identifying what a routine response looks like
- Analyzing the hallmarks of an incident to measure severity and if it amounts to a crisis
- Responding to a progressively more severe situation and ransomware demand
- Recent examples of how (and how not) to respond to a ransomware demand
- Examining what the company policy says, and how it may apply to different situations
- Determining whether or not to pay or not pay ransomware
- Communicating your company’s position when the event goes public
- Analyzing how a cyber incident changes when it becomes public
- How to respond when the company is a consumer facing business
- Responding to media attention and scrutiny
- Implementing a resiliency and redundancy plan
- Implementing the full plan for crisis recovery
- Defining what business continuity looks like-and what needs to change moving forward