Tips for handling your first security breach
by Jim Hansen - Senior Director, Product Management, AlienVault - Monday, 10 February 2014.
Do not be reluctant to ask for help or support. It’s okay. As the long hours and sleepless nights count up, just know that there is an end. Eventually you will have discovered all there is to discover, the executive team will have collected all of the data that is required to do their job and life will return to normal once again. If public disclosure of your security is required, know that it is a double-edged sword. For example, you may experience great catharsis in knowing that the truth is out in public, but you must realize that the PR-spin engine will be operating in full speed and so you will be under a mountain of non-disclosure. Also, know that if you work for a large organization, they often have employee counselors readily available to discuss legal matters. Take advantage of these employee counselors because you shouldn’t underestimate the value of having someone you can obtain advice from.
In this day and age, it is an accepted truth that it is just a matter of time before your organization is breached – what is important is how you handle it. Remember to breathe and to manage your stress accordingly and know that you will come out of this situation with an experience that you cannot learn in any lab or any simulated exercise.