Upon developing ABC Company’s Incident Response Policy ( Midterm), evaluate the incident described above:
- Summarize the data incident and potential level of risk, include why?
- Upon identifying the types of data that could potentially be impacted and what laws/regulations could be in violation of non-compliance if this data was breached
- Develop your action plan to evaluate this data incident (include your rationale for why the steps were necessary)
- Describe how the Incident Response Policy supported your actions
- Identify any issues that made the evaluation more difficult
- Identify areas of future risk mitigation actions should a similar incident occur (look at the gaps or issues with this scenario)
- Close the incident (NOTE: The outcome of the incident did not surface any major risks or data breach to the company but it took the evaluation to get to this conclusion)