Knowledge, Training, Insurance and Relationships the Key to Managing Cyber Events
NEW YORK (June 28, 2017) — A strong partnership between IT, legal, risk management and public relations is critical for an effective cybersecurity program, according to RIMS Professional Report, “Cyber Protection: What to Do Before and After a Cyber Incident.”
The newly released RIMS report walks risk professionals through the precautionary steps and post-incident responses critical to effectively managing a data breach. The report highlights the importance of understanding business strategy and susceptible assets, employee training, cyber insurance and developing collaborative relationships with internal stakeholders and external partners.
“The difference between successfully navigating a cyber incident and falling victim to one is preparation,” said Teri Cotton Santos, senior vice president, chief compliance and risk officer at The Warranty Group and RIMS’ Cyber Security Task Force member. “Risk professionals are in a unique position and are often called upon to foster collaboration between business area leaders. As cyber concerns continue to mount, greater expectations will be placed on practitioners and the invaluable role they must play to manage this evolving risk.”
RIMS Professional Report “Cyber Protection: What to Do Before and After a Cyber Incident” is authored by the members of RIMS External Affairs Cyber Security Task Force. The group includes: Teri Cotton Santos; Dwayne Eastwood, manager, risk management at McCoy’s Building Supply; Michael Gresham, risk manager, Half Price Books Inc.; and John Hansen, vice president, enterprise risk management at Sprouts Farmers Market. The professional report is now available in RIMS Risk Knowledge library at www.RIMS.org/RiskKnowledge.