LET’S GET STARTED www.dbeinc.com 800-373-3000 sales@dbeinc.com EXPERIENCE THE DBE DIFFERENCE ATM | ITM | TELLER CASH AUTOMATION | COIN + CURRENCY | ATM MARKETING VIDEO + DIGITAL BANKING | SERVICE | REMOTE SERVICES + PATCHING SERVICES Step 5: Modify Scenarios Make any necessary changes to the walkthrough scenarios based on your initial tabletop walkthrough. Keeping your organization’s walkthrough scenarios up to date is important to performing tabletop tests (next step) and helping to think through how to respond to incidents before they happen. This step will also ensure that your organization keeps up with the ever-changing field of cybersecurity. Step 6: Perform Tabletop Testing Your playbook should be ready for an official tabletop test with representatives from your incident response and business continuity teams. Tabletop tests are critical to an organization because they reveal where your incident response and business continuity plans need to be improved and allow those teams to communicate through conflict effectively. There is no better way to mimic a possible incident than to test relevant scenarios based on your organization’s risk assessment(s), penetration tests, vulnerability assessments and other audit activities. Tabletop tests should be performed at least annually (more often if needed), and documenting the results of your testing is extremely important each time a test is performed. Documentation not only proves your organization is staying up to date on testing its incident response and business continuity plan but also outlines areas for improvement and shows that you’re continually exercising your team’s ability and communication effectively. Step 7: Review the Incident Response Plan After you perform an official tabletop test of your playbook, it is time to revisit your incident response plan. Based on your testing, you should have several questions that need answers or edits to make to your incident response plan. Keeping your IRP updated with recent changes is good practice; it ensures your plan is better prepared if an incident occurs. Keep Evolving Your Playbook As your organization grows and expands, so do your risks and vulnerabilities. It’s a good idea to evolve your playbook as your organization evolves. Revisit your audit activities every time they are performed. This will ensure that you stay current on what your organization’s network needs to improve on. In addition, continue to assess the top threats your organization faces compared to the vulnerabilities revealed during your audit activities. Re-analyze your IRP and tabletop walkthroughs and update these with newfound scenarios based on updated threats that may affect your organization. 27 NEBRASKA BANKER
RkJQdWJsaXNoZXIy MTg3NDExNQ==