Calgary TELUS Convention Centre - September 13 - 16, 2020

Cyber Security Incident Response Planning

16 Sep 2019
10:40 - 11:30

Cyber Security Incident Response Planning

Level: Intermediate. 

In this presentation we will outline the steps to develop a robust cyber security incident response management plan and identify elements to consider in assessing the plans effectiveness. In doing so, we will discuss the importance of having protocols in place to enable staff to react to incidents quickly, lessen the impact, and return to “business as usual”.

The live demonstration included below will reveal human vulnerability to cyber threats, thereby demonstrating the importance of having an incident response management plan.

We will explore elements that internal audit should assess in the following processes:

  • preparing for a cyber incident
  • developing a communications plan
  • considering elements of digital forensics
  • initial triage, assessing the level of scope, and response to a threat
  • reviewing the process and improving the incident plan if needed

Cybercrime is the most likely cyber threat to affect Canadians and Canadian businesses in 2019. A single click was all it took to launch one of the biggest data breaches reported to date (Yahoo, March 2017). To demonstrate how easy an attack can be, as part of this presentation, we will show how Cyber criminals exploit predictable human behavior.