HYPOTHETICAL SCENARIOS
FOCI and Cybersecurity Breach Action Plan: Tailoring Your Incident Response to Meet Mitigation Security Requirements and Breach Policy
Ernie Magnotti
Chief Information Security Officer (CISO)
Leonardo DRS
Robert Metzger
Partner
Rogers Joseph O’Donnell
What happens during a breach? This interactive session will examine the play-by-play of how a FOCI mitigated company will now need to react to a cybersecurity breach under stricter Department of Defense and CMMC safeguards
- Determining your company’s obligations under NISPOM in the context of a cyber breach
- Ensuring your FOCI company is following its cybersecurity breach policy and implementing checks
- Deciphering which policies kick-in during a cyber breach: Systems Security Plan (SSP) for Controlled Unclassified Information (CUI) and Standard Policies and Procedures (SPP)
- Examining the effect of a breach on a cleared company with classified information
- Analyzing how the breach effects the whole company and who has responsibility
- Determining what the security representative can and can’t tell the parent
- Reconciling the effects on the AOP