Does anyone have experience using a cyber security incident response plan flow chart? Has that been effective?
Sort by:
Chief Information Security Officer in Healthcare and Biotech2 years ago
mitre attack framework can be good reference point
Director of Cybersecurity in Government2 years ago
I checked our own plan, and we don't have a flow chart. We do have a table to assess the severity of an incident. You can see it at https://www.idmanagement.gov/docs/fpki-imp.pdf. We developed our plan according to the U.S. National Institute of Standards and Technology Standard Publication 800-61 at https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf
What kind of flow chart do you mean? A communications flow chart or a RACI flow chart?
Certainly! From my perspective, a cybersecurity incident response plan flowchart is a valuable visual tool for organizations, helping to streamline the response process and ensure all critical steps are being consistently followed. When designed well and paired with regular training, it can be quite effective in guiding teams through incidents efficiently. By striving to perfect our response mechanisms, we aim to be the 'light on the hill'—showcasing best practices for the industry. It's essential, however, to review and update the flowchart periodically to reflect evolving threats and best practices.