What is Cyber Incident Response Drill?
“A plan not tested, is not a plan at all”
Cyber Security is a sub-set of Information Security.
But since most information is created, stored and shared through “cyber” means, the terms are often used interchangeably.
Information Security performance in Australia:
The Office of the Australian Information Commissioner (OAIC) publishes annual reports for reported cyber incidents involving personal information.
The following graphs show the OAIC statistics from 1st April 2018 to 31st March 2019:
Notifiable Data Breaches Statistics
Human Error Causes
Top Reporting Sectors
Size of Breaches
Types of personal Information
Companies of all shapes and sizes are vulnerable to cyber-attacks,
Performing the drills helps you to prepare.
Benefits of conducting Cyber drill:
They test both technical and governance aspects
They provide performance benchmarks
They provide valuable insights
Unique chance for executives to assess their staff’s preparedness as well as their own
Quality Assurance for third parties.
The objectives of a Cyber drill:
To test the effectiveness of the CIRP/IR
To assess the awareness and preparedness of staff
Here at Compliance Council, our team of expert InfoSec Consultants can help you mitigate the risks arising from an attack.
We conduct the drill in two phases:
Phase 1. Preparation
Phase 2. The Drill
The findings are then recorded and documented, decisions are taken on corrective actions and remediations, which helps to establish the benchmark for the future.
Glossary: Key terms
- Cyber attack: An assault launched by an assailant with the objective of causing damage or gaining a benefit.
- Hacker: Neutral Term. Cyber Criminals are called “Black Hats”. Ethical hackers are called “White Hats”.
- Blue team: The team responsible for the cyber defence of an organisation.
- Red team: The team responsible for simulating an attack to assess current cyber security posture.
- Gold Team: The executive team of an organisation. Responsible for cyber governance and incident decision making.
- Cyber Incident: A cyber attack that was successful in by-passing security controls.
- Information Security controls: Measures taken to mitigate risks facing information assets.