OTA Data Breach & Incident Readiness Planning Guide
Issuer Full Name
Online Trust Alliance (OTA)
Issued
28 January 2010
Country:
Type
- Free/open
Keywords
A framework for businesses, non-profits, and governmental agencies. Considerations should include but not be limited to preventative, containment, and reactive practices and business policies. Key components include:
1. Data Classification
2. Audit and Validate Data Access
3. Data Minimization & Destruction Policies
4. Steps to curb abuse of your brand, domain and email
5. Creating a team defining accountability and decision making authority
6. Establish relationship with vendors
7. Crating a project plan
8. Determine who needs to be notified, when and how
9. Creating communication plan and draft responses
10. Providing assistance and possible remedies
11. Employee training
12. Develop a process for critique and post mortem analysis
13. Funding & Budgeting
1. Data Classification
2. Audit and Validate Data Access
3. Data Minimization & Destruction Policies
4. Steps to curb abuse of your brand, domain and email
5. Creating a team defining accountability and decision making authority
6. Establish relationship with vendors
7. Crating a project plan
8. Determine who needs to be notified, when and how
9. Creating communication plan and draft responses
10. Providing assistance and possible remedies
11. Employee training
12. Develop a process for critique and post mortem analysis
13. Funding & Budgeting
Reviews (0)
Be the first to review this rule!
