Whether you get that dreaded phone call from your IT specialist or from the FBI telling you your network has been hacked, you need to immediately engage your recovery partners. Cyber-crime is not something business owners should do without involving experts.
OPM breach results in critical information loss and increases cybersecurity demands.
Four key cyber security experts to engage are:
1. Cyber attorney
The specialized practice of cyber law is rapidly growing. There are nuances that a general attorney may not know and the laws are diverse and changing. A company that has been hacked needs to think about various state laws for states where its customers reside, international law if the company has foreign offices, suppliers or customers, and any specific cybersecurity requirements for its industry.
Your cyber attorney can guide you through the preparatory steps of a potential class action lawsuit or individual lawsuits. This individual will partner with you through the various legal stages of notifications, evidence gathering and collaborating with law enforcement. If patents or trade secrets were stolen, additional actions may be required.
2. Cyber insurance agent
Just as you would immediately contact your commercial property insurance agent if you had property damage after a storm or break-in, you need to contact your cyber insurance agent. Your agent will help you understand the claim process as well as help you with the recovery actions.
3. Public relations expert
The cyber attorney can help you craft the content of separate messages to the public, your customers, your regulators and your suppliers. Your public relations expert can help you communicate that content in the most effective method. Timing needs to be considered as well as how the messages are disseminated. Social media can be powerful but it can be damaging if not used thoughtfully.
Siobhan Gorman, a director of the communications consultancy company Brunswick Group stated in a podcast “Never disclose numbers at the outset unless you would stake your job on it”. Having to backtrack any statements when additional information is discovered later can make your business partners and customers suspicious. Provide the true information at the right time.
4. Forensics specialist
A forensics specialist can guide you through the documentation process of the actual attack. They can help you isolate the evidence you will need for any lawsuits or criminal cases against the hacker. Preserving the evidence of the attack as well as the state of cybersecurity of the network is critical. While law enforcement may look at the network details, you want to have your independent specialist examine the network and cyber-attack. The forensics specialist needs to be contacted before the network is changed in any fashion, including rebooting or transferring data to a secondary system.
Cyber-attacks may be overwhelming, but your business can recover with expert support. Partnering with experts will help you get your business operational faster and assist you with the recovery challenges.
Please join us on Twitter and Facebook.
If you would like a career in cybersecurity, Excelsior college offers programs and courses.