Incident Response Planning: Who's Your Go-To Security Expert?

Published in Member Communities on August 01, 2019

When an organization has a breach in data or has been the victim of a cyberattack, we call this an incident. While we’d love to live in a world where we don’t have to assume incidents can and will happen to you, this isn’t the case. That’s why VGM Technologies offers incident response planning for VGM members. In this article, we’ll walk through what that means and why it’s necessary for your organization to have a security expert in your corner. Let’s get started, shall we?

What is Incident Response Planning?

This is a proactive approach to handling incidents. Your organization should have a predetermined plan ready for when the time comes to respond to a breach in security. It will help you detect, respond and recover in a way that limits damage while reducing recovery time and costs. A plan should include:

  • An incident recovery team with their names and contact information
  • A reference for all system details (i.e. data flow diagrams, network diagrams, etc.)
  • Procedure for reporting and handling a suspected incident

Who Should be on the Incident Recovery Team?

This is where the experts come in. An incident recovery team is a group of people that you trust to implement the incident response plan. These are typically members of the IT staff who collect, preserve and analyze incident-related data. The IT personnel may need to work with lawyers and communications experts to make sure that legal obligations are met. If you do not have an IT team on staff, we can work with you to connect your organization with VGM’s expert cybersecurity partners.

What Happens If I Don’t Have an Incident Response Plan?

The short version: bad things will happen. The long version: it will take a much longer time to stop the attacks, repair weaknesses and respond appropriately to all parties if you do not have a plan in place. Even the best of the best in the IT industry have plans in place, so there is no room for panic or error when a cyberattack hits.

It’s important to note that the most sought after information on the dark web is healthcare information. If a hacker has access to data from a healthcare provider or organization, they have the opportunity to make a huge profit off of stolen identity info. This means that we can guarantee your organization will be hit with a cyberattack at some point. Will you have a plan in place for when it occurs? Let us help you prepare by establishing your incident response plan today.


comments powered by Disqus

From Our Experts

Clarification on What is a “Healthcare Provider” in the FFCRA thumbnail Clarification on What is a “Healthcare Provider” in the FFCRA In phase 2 of the government's COVID-19 relief package, passed nearly 2 weeks ago and known as the Families First Coronavirus Response Act (FFCRA), there was language exempting certain business types from being required to offer expanded medical leave and sick leave to their employees. VGM clarifies these exemptions in the following article. House Passes Coronavirus Stimulus Plan - HME Legislation Included! Heading To The President's Desk thumbnail House Passes Coronavirus Stimulus Plan - HME Legislation Included! Heading To The President's Desk On March 27, the Coronavirus Stimulus Package, H.R. 748, passed the House. The bill will now head to President Trump's desk for his signature. Much needed reimbursement relief will be coming to home medical equipment suppliers! The bill includes language from H.R. 2771, which provides relief for areas deemed rural and non-rural by CMS. U.S. Small Business Administration Offers Low-Interest Rate Loans thumbnail U.S. Small Business Administration Offers Low-Interest Rate Loans The U.S. Small Business Administration (SBA) is offering designated states and territories low-interest federal disaster loans for working capital to small businesses suffering substantial economic injury as a result of the coronavirus (COVID-19). Out of Equipment? Too Much Equipment? SWAP IT. thumbnail Out of Equipment? Too Much Equipment? SWAP IT. VGM would like to help our members help supply equal demand whenever possible. Some of you will run out of equipment, while others will be sitting on a surplus of that same equipment. We are opening up our vgm.com members only portal as a venue for providers to identify areas (both geographic areas as well as equipment categories) where demand is outweighing supply, or vice versa. Providers who so choose can share/rent/buy equipment to/from one another. Member Q&A: Am I an “Essential Business”? thumbnail Member Q&A: Am I an “Essential Business”? In every instance we are aware of right now, DMEPOS providers have been categorized as essential and may continue to operate, though it may make sense for them to change or scale back their operations temporarily, prioritizing what has to be done now and what can wait. Based on the information above, VGM feels comfortable stating that you, the companies who provide DMEPOS related products and services, are indeed essential during this COVID-19 pandemic. CPAP Devices Can Be Used as Ventilators During Coronavirus Outbreak, FDA Guidance Says thumbnail CPAP Devices Can Be Used as Ventilators During Coronavirus Outbreak, FDA Guidance Says As of March 22, new temporary guidance from the FDA allows hospitals to re-purpose existing products such as CPAP devices as ventilators, an effort to meet major shortages in the United States during the coronavirus outbreak. Episode 49: COVID-19 Updates for DMEPOS Providers thumbnail Episode 49: COVID-19 Updates for DMEPOS Providers VGM's Payer Relations experts Ronda Buhrmester and Craig Douglas team up to give an update on COVID-19 for DMEPOS providers. Families First Coronavirus Response Act Signed This Week thumbnail Families First Coronavirus Response Act Signed This Week The Senate has passed (by a vote of 90-8), and President Trump has signed, the second COVID-19 relief package, known as the Families First Coronavirus Response Act (H.R. 6201).