Crisis Communication | Why Should DoD Contractors Be Looking To Level 3 of CMMC
Check the following link to learn more about Crisis Communication:
In this video, I am interviewing Michael Puldy, CEO of Puldy Resiliency Partners. We had a discussion over the following Subjects:
-Why Should DoD Contractors Be Looking To Level 3 of CMMC
-Levels of CMMC
-Which part of the NIST framework relates to crisis and incident management?
-What is the correct amount or level of communication during a crisis?
-A Guide to Effective Incident Management Communications
A data breach should be viewed as a “when” not “if” occurrence, so be prepared for it. Under the pressure of a critical level incident is no time to be figuring out your game plan. Your future self will thank you for the time and effort you invest on the front end.
Incident response can be stressful and IS stressful when a critical asset is involved and you realize there’s an actual threat. Incident response steps help in these stressful, high-pressure situations to more quickly guide you to successful containment and recovery. Response time is critical to minimizing damages. With every second counting, having a plan to follow already in place is the key to success.
NIST stands for National Institute of Standards and Technology. They’re a government agency proudly proclaiming themselves as “one of the nation’s oldest physical science laboratories”. They work in all-things-technology, including cybersecurity, where they’ve become one of the two industry-standard go-to’s for incident response with their incident response steps.
The NIST Incident Response Process contains four steps:
Detection and Analysis
Containment, Eradication, and Recovery