Crisis Management Best Practices
Be the first to disclose a crisis. T-Mobile only announced the cyberattack after Vice reported it.
Vice reported someone in an online forum was attempting to sell stolen data, allegedly belonging to T-Mobile.
The mobile company confirmed the following day but provided few details.
Failing to report the news first casts T-Mobile in a negative light..
,
Crisis Management Defined
Discussed in Chapter 6: The Nature of Management, crisis management (or contingency planning) is an element in planning that deals with potential disasters such as product tampering, oil spills, fire, earthquake, computer virus, global pandemics, or even a reputation crisis due to unethical or illegal conduct by one or more employees.
Businesses th.
,
Do you have a crisis management plan for cyber breaches?
Having a solid crisis management plan for future cyber breaches can prevent a bad situation from turning into a nightmare.
You can protect your assets and your trust with customers by responding appropriately if and when a breach occurs.
,
How to manage security incidents and data breaches?
ensure proper data breach and security incident management by the PIC or PIP, including:
the latter’s preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed period; . ,
in The Classroom
This article can be used to discuss planning and crisis management (Chapter 6: The Nature of Management).
,
Is a data breach a crisis?
A data breach is a crisis and must be treated accordingly.
Crisis management expert Ian Mitroff carefully differentiates between an incident and a crisis as follows:
An incident is “a disruption of a component a unit or a subsystem of a larger system such as :a valve or a system generator in a nuclear plant. ,
What is the biggest mistake of data breach management and response?
The biggest mistake of data breach management and response is the assumption a data breach is a computer security incident.
It is usually much more than that.
A data breach is a crisis and must be treated accordingly.
Crisis management expert Ian Mitroff carefully differentiates between an incident and a crisis as follows:.
Data breach of Indian banks
The 2016 Indian bank data breach was reported in October 2016.
It was estimated 3.2 million debit cards were compromised.
Major Indian banks, among them SBI, HDFC Bank, ICICI, YES Bank and Axis Bank, were among the worst hit.
The breach went undetected for months and was first detected after several banks reported fraudulent use of their customers’ cards in China and the United States, while these customers were in India.