Incident Response Planning (IRP)
An Incident Response Plan is a “break glass now” document that walks the organization through a variety of incidents and how those should be handled by your team. A comprehensive IRP will include:
- Designation of the Incident Response Team
- Classification system for incidents, along with who and how an incident can be declared
- Notification requirements
- Information that is at-hand to ensure rapid recovery
- Appropriate response and recovery actions
- Run Books detailing the specifics of how a variety of applicable incidents should be handled for your organization
Vestige has years of experience putting effective IRPs together. Based upon a template that Vestige has designed and uses for its IRPs, each organization’s plan is customized by following a specific proven methodology that includes Discovery meetings, drafting of the document and approval by the organization. Familiarity training for you and your team can even be included as an option.
Tabletop Exercises & Testing
Having a plan is great. But your team also needs to become familar with the plan, know what to expect and use it in the face of an incident. Best Practices dictate that periodic testing should be performed to achieve that familiarity — as well as identify gaps that may exist and should be addressed prior to having to handle an incident. Tabletop Exercises (TTX) are a great way of simulating an incident and providing ample opportunity for the Incident Repsonse Team to engage in a safe, but effective simulation.
Vestige’s Tabletop exercises are custom-designed for the organization to provide realistic scenarios that you could face in a real incident. These typically last 90-120 minutes and include not only the introduction and conducting the test, but a hotwash/debrief for participants, followed by a written report highlighting the organization’s performance and offering constructive feedback, gap assessments and recommendations on strengthening the plan for the future.