Refining Incident Response Playbooks at the Granular LevelKamal Sharma, (ISC)² Bangalore, on How to Build a Robust Cyber Resilience Program
The foundation of a cyber resilience program lies in a well-crafted response plan, but these plans encounter obstacles at the time of execution due to a lack of details and an excessive focus on tools at the expense of people and processes.
According to Kamal Sharma, vice president of the (ISC)² Bangalore Chapter, an effective incident management procedure goes beyond intricate charts and workflows. "The plan revolves around practical aspects such as a comprehensive asset inventory, knowledge of backup locations and clearly assigned responsibilities," he said.
Sharma emphasized the importance of comprehensive and meticulous playbooks that provide guidance at each step of the recovery process. While the prospect of creating playbooks for every possible scenario may seem overwhelming, he advised starting small by assessing the organization's current state, prioritizing action items and gradually expanding the playbooks over time.
In this video interview conducted at Information Security Media Group's Bengaluru Cybersecurity Summit, Sharma discusses:
- Components of cyber resilience playbook;
- Building a robust incident response plan;
- The importance of assessments and associating with partners.
Sharma has 28 years of experience working with leading multinational organizations across infrastructure, technology and cybersecurity domains. His experience spans the areas of managing presales management, service delivery and partner/vendor management for IT and engineering businesses.