Security Incident Response
Incident response is a plan that evolves over time. With punitive measures introduced by the GDPR (General Data Protection Regulation) and the NIS Regulations (The Network and Information Systems Regulations 2018), an organization’s approach to Information Security makes a huge difference between failure and success.
Frameworks That Outline And Require Incident Response Measures
The following standards require incident response measures:
- ISO 27001, the international standard for an ISMS (information security management system)
- ISO 22301, the international standard for a BCMS (business continuity management system)
- PCI DSS (Payment Card Industry Data Security Standard)