Cyber-attacks and breaches dominate the media and are a significant focus of the government and Regulators. Banks are faced with the grim reality that a cyber-attack is inevitable. It’s not a matter of if an attack will occur, only when.
Every type of entity is under siege by sophisticated attacks that are often financially driven, draining accounts as effectively as they disrupt operations. Incident Response Plans today must consider a myriad of possible attack methods to ensure Plans appropriately mitigate unique threats.
Going beyond the FFIEC guidance, this session analyzes critical components of a Cyber Incident Response Plan and provides recommendations on how to prepare all staff for when the inevitable situation occurs. From internal considerations to your external solution providers, get a realistic view of how a cyber-attack can quickly spiral a typical day into complete chaos and cause significant losses without preparation.
This session is appropriate for all staff; we all play a critical role in protecting the bank and customers.
Attendees will receive valuable resources and a take-away Incident Response Plan checklist to ensure you have considered critical components.
This webinar will cover:
- FFIEC requirements
- Unique operational challenges
- Critical components of Cyber Incident Response Plans
- Building an effective internal Incident Response Team
- Incident Response Team and Board roles
- Communications before, during, and after an incident
- Effective Plan testing strategies
- Risks and remedies related to vendors and solution providers
Attendees will receive a Cyber Incident Response Plan checklist to help their Incident Response Team analyze or develop a Plan.
Prerequisites: A basic understanding of common cyber-crimes is recommended, including DDoS and Account Takeover. This session focuses on response, not events
Beyond Disaster Recovery: Cyber Incident Response
Vendor Risk Questionnaire
Sample Security Incident Response Plan
Webinar Q & A Document