Article
Executive Resource
Insight Hub
Ext. Publication
VideoIncident Response Checklist for Executives
Create an account or log in to View Executive Resources and Locked Content.
Log InSign Up
How leaders can work with IT teams to help, not hurt, during a security incident
What’s Inside
Ransomware attacks, Denial-of-Service attacks and data breaches are more than IT problems — when your company gets attacked, you need to know the plan. Your IT department’s Incident Response Plan is only the starting point. How do CEOs, CFOs, COOs and other leaders support the IT team to help, and not hurt, as you get through the first 48 hours together?
This questionnaire is designed to help leaders — especially those outside the IT department — assess their company’s readiness for a cyber incident. It includes a sharable “In Case of Emergency” quick reference page to list key contacts, the location of the Incident Response Plan and other information leaders will need to access quickly.
Key Points
Leaders can use this questionnaire to confirm their plan covers the most important aspects of a cybersecurity incident response, such as:
- Who should be contacted immediately?
- Who maintains the incident response plan, and where it is kept?
- Who is in charge of the response, and what authority do those people have?
- Is there a cyber insurance policy? Who is responsible for informing the carrier of an event, and when?
- Who will document events, the system state, response actions, and maintain evidence with proper chain of custody?
- Who will manage internal and external communications? Is regulatory reporting required?
Why it Matters
Don’t let your first cyber breach be the first time you test your security incident response plan. Use this questionnaire and the “In Case of Emergency” card to make sure that your organization is prepared when (not if) an information breach, denial-of-service attack or ransomware attack occurs.
View all content.
Sign in or create a free account to view all Executive Resource Center content.
Log In Create AccountHow leaders can work with IT teams to help, not hurt, during a security incident
What’s Inside
Ransomware attacks, Denial-of-Service attacks and data breaches are so disruptive, they are more than IT problems — when your company gets attacked, you need to know the plan. Your IT department’s Incident Response Plan is only the starting point. How do CEOs, CFOs, COOs and other leaders support the IT team to help, and not hurt, as you get through the first 48 hours together?
This questionnaire is designed to help leaders — especially those outside the IT department — assess their company’s readiness for a cyber incident. It includes a sharable “In Case of Emergency” quick reference page to list key contacts, the location of the Incident Response Plan and other information leaders will need to access quickly.
Key Points
Leaders can use this questionnaire to confirm their plan covers the most important aspects of a cybersecurity incident response, such as:
- Who should be contacted immediately?
- Who maintains the incident response plan, and where it is kept?
- Who is in charge of the response, and what authority do those people have?
- Is there a cyber insurance policy? Who is responsible for informing the carrier of an event, and when?
- Who will document events, the system state, response actions, and maintain evidence with proper chain of custody?
- Who will manage internal and external communications? Is regulatory reporting required?
Why it Matters
Don’t let your first cyber breach be the first time you test your security incident response plan. Use this questionnaire and the “In Case of Emergency” card to make sure that your organization is prepared when (not if) an information breach, denial-of-service attack or ransomware attack occurs.
As you fill in this checklist, a handy “In Case of Emergency” sheet at the end will record your key contacts and critical information. Share the finished page with other executives, general counsel and anyone else who will be part of the response.
© 2022
