Assume breach.
Prep your execs that one is coming. The betting odds are
good that something bad is potentially already hidden in your infrastructure someplace,
particularly if your organization is immature or where a wise security leader like
you is new to the team.
Set the expectation that your team has a really bad day
coming.
Generously share with the execs where things are most at
risk. And why. And your plan. And the
resources needed to remediate.
Not FUD. Just facts.
And take care of the obvious things. There are no good
answers for why AV or full disk encryption isn’t everywhere. You didn’t have
the time? Really?
Because after a really bad day, there will be a day of
reckoning and perhaps even a search for scapegoats. Lots will change
post-breach.
Make sure that you hold a strong hand to play before then.
Follow me on Twitter for discussion and the latest blog updates: @Opinionatedsec1
SEE ALSO
No comments:
Post a Comment