Skip to content

Cyber Incident Response Testing

Answered by: 

Question: 
What do the Regulators expect when testing our Cyber Incident Response Plan?
Answer: 

The FFIEC states, “To validate the effectiveness of the institution's incident response program, management should periodically test it through different test types, including scenario planning and tabletop testing, and perform the tests with appropriate internal and external parties.” Tabletop exercises are valuable but can only demonstrate so much. This course provides tips for more extensive, realistic testing.

First published on 05/06/2018

Search Topics