A recoverable problem can quickly become a disaster if you’re not careful, which is why you and your employees must know exactly what to do if a serious security breach happens. Having documented guidance, clearly understood by all staff members, is essential – even if it tells you to do nothing until professional technical support arrives.
If you fall victim to a serious malicious incident, even if you can identify the culprit, don’t take action that could hinder or jeopardize subsequent action by law enforcers. Better to call the police immediately, because they have specialist cyber units that can help you. Learn lessons and make changes so you are better protected and better able to react in the future. If additional hardware or software would have provided better protection, buy it, budget permitting. Seek expert advice if in any doubt.
Consider all possible effects a cyber security breach could have on your business and create a plan to ensure your business can continue to operate should the worst happen. This is called contingency planning, of course, which is key to effective business continuity management.