On April 29, the Department of Justice published its “Best Practices for Victim Response and Reporting of Cyber Incidents”, which is an excellent, easy to read summary of steps companies can take to protect against cybersecurity incidents. The Guidelines are separated into three sections: (1) steps to take before a cyber intrusion or attack occurs; (2) how to execute an incident response and plan and respond to a computer intrusion; and (3) “What Not to Do Following a Cyber Incident. The DOJ drafted the Guidelines based on the experience of federal prosecutors who have handled cyber investigations and prosecutions and with input from companies who have managed cyber incidents. The Guidelines are scalable and are developed especially for medium and smaller sized companies.
Anyone interested in developing a Cybersecurity Plan should review the Guidelines here and create a checklist of the identified best practices.
- Partner
Jacob Rhode assists clients with litigation and dispute resolution, helping develop and implement strategies to successfully resolve corporate disputes. He serves as co-leader of the firm's Litigation Group.
Jacob primarily ...
Topics/Tags
Select- Cybersecurity and Privacy Law
- Privacy Laws
- California Consumer Privacy Act
- Privacy
- Cybersecurity Regulation
- GDPR
- Data Breach
- Cyber Insurance
- Coronavirus
- CCPA
- General Data Protection Regulation
- Class Action Litigation
- Mergers & Acquisitions
- SEC
- FISMA
- Incident Response Plan
- Information Governance
- Corporate Law
- E-Discovery
- Federal Trade Commission
- Seventh Circuit
- Department of Justice
- Litigation
Recent Posts
- New York Bans Sale of Certain Supplements to Minors
- GDPR Compliance: What is Privacy Shield 2.0?
- Connecticut's Data Privacy Law
- The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA)
- The Utah Consumer Privacy Act
- The Colorado Privacy Act
- The Virginia Consumer Data Protection Act
- State Data Privacy Law Series
- TransUnion LLC v. Ramirez and the Impact on Class Action Litigation
- 2023: The Year of the CPRA and CDPA - Virginia Joins California in Passing Comprehensive Privacy Legislation