Build an Effective IRP for Operations

Use The Worksheet to Create an IRP that Ops Deserves 

We've outlined 20 questions covering Prevent, Respond, Recover; all dedicated to Operations and the technology that supports it.  Complete the worksheet and add it to the organization's Incident Response Plan (IRP). Protecting Operations from a breach can be complex.  Adding Operational assets and procedures to the organization's IRP should be simple. 

INTERACTIVE WORKSHEET

IRP FOR OPS MINI

DOWNLOAD THE WORKSHEET

Operations Deserves A Dedicated Response Plan

The Technology is typically older, with more vulnerabilities.

Breaches and incidents affect Operations in very different ways than the rest of the organization.  A cyber attack can halt production at your own facility, and your business can be used as a conduit to the production networks of your customers and suppliers.

What's Inside:

Build an IRP for Operations

Breaches and incidents affect Operations in very different ways than the rest of the organization. A cyber attack can halt production at your own facility, and your business can be used as a conduit to the production networks of your customers and suppliers. Add that to the fact that operations technology is typically older with more known vulnerabilities, Operations needs its own version of an Incident
Response Plan; one that is shared with both IT and the Boardroom. There are a number of security frameworks, and Incident Response Plans (IRPs) published for IT teams. This IRP is designed specifically for those responsible for productivity. It is broken down into three phases: prevent, respond, recover.

PREVENT:

  • Minimize the risk of a breach
  • How to identify a potential breach
  • What to do FIRST

RESPOND: 

  • Determine the size and scope of the impact
  • Has the source of the breach been identified?
  • Has the breach been isolated?

RECOVER:

  • How to bring operations safely back online
  • Getting back to business
  • Lessons learned 

As a bonus, we've added a final section; "what not to do when a breach occurs".  Some tips may seem odd, and some may seem obvious.  It's important to review so that everyone in the organization is on the same page when you are compromised.