The First Step Following a Security Breach? Establish Secure Communications

Every day security breaches are publicized in the media. Hackers don’t seem to discriminate between different sized organizations or various industries. Regardless of whether an organization is large or small, whether it’s a government organization or financial, legal, healthcare or retail establishment, security breaches occur regularly.

When an organization discovers it has been hacked, the natural first steps are to communicate with various important stakeholders to start getting their arms around the incident and begin the process of remediating it technically and beyond.

A proper response to any cyber incident includes the following stakeholders:

Cybersecurity team
Outside incident response team
CIO, CSO, CISO
Business executive management (CEO, CFO, COO)
General Counsel
Outside counsel
The Board of Directors
Public Relations and media communications firm

Assembling this cross functional and inter-organizational team is the only way to ensure a well-developed and executed incident response strategy following the breach.

Frequently however, when an organization discovers a breach, and begins the incident response, the hackers are still inside the network. Systems are shut down and employees are reduced to pen and paper in an effort to shut the hacker out from gaining any additional information. Communications between these stakeholders becomes difficult if not impossible.

The only way to ensure secure communication across the stakeholders, is by not relying on traditional corporate communications since they may be compromised. If your organization is “owned,” any communications whether email, phone calls, cell phone calls or text messages may be intercepted by the hackers, providing them with valuable intelligence about your response strategy and tactics.

Moreover, traditional communications do not enable secure inter-organizational teams.

The only approach in these situations is to use an easy to use and readily available “out of band” secure communications solution that supports inter-organizational communities of interest.

Security Breach Incident Response Secure Communications

KoolSpan’s TrustCall provides secure communications, between communities of interest; including cross-functional and inter-organizational teams. It is not only secure, but also readily available and easy-to-use. TrustCall secures mobile communications including phone calls and text messages, enabling stake holders to speak and send messages even when the network is infected.

For more information, download the data sheet, or contact KoolSpan.

Elad Yoran

Elad Yoran is Executive Chairman of KoolSpan, CEO of Security Growth Partners (SGP) and Associate Adjunct Professor at Columbia University School of International and Public Affairs (SIPA). He is a 20+ year cybersecurity executive and entrepreneur, among other things having founded and led many foundational cyber companies. He serves as director at Infinidat as well as on several government and industry boards including the Army Cyber Institute, the Cloud Security Alliance, and previously, the FBI IT Advisory Council. Elad is the author of many articles going back to the original Internet Security Threat Report research papers. Elad’s cybersecurity entrepreneurial experience, for which he was honored as “Entrepreneur of the Year” by E&Y, includes Riptech, acquired by Symantec; MediaSentry, acquired by SafeNet; Sentrigo, acquired by McAfee; Vaultive, acquired by CyberArk and others. Previously, Elad served as VP Global Business Development at Symantec. In addition, Elad was a strategic investor and director/advisor to Red Owl Analytics, acquired by Forcepoint; NetWitness, acquired by RSA; ThreatGrid, acquired by Cisco; and Insightix, acquired by McAfee. Previously, Elad served as a US Army officer and is a veteran of Operation Restore Hope in Mogadishu, Somalia. He is a graduate of the Wharton School and West Point.