Outside of the technical realm, there are still other organizational members that should be included within the CSIRT. Organizational personnel can assist with a number of non-technical issues that fall outside those that addressed by the CSIRT core and technical support personnel. These include navigating the internal and external legal environment, assisting with customer communications, or supporting CSIRT personnel while onsite.
The following are some of the organizational support personnel that should be included in a CSIRT Plan:
- Legal: Data breaches and other incidents carry a variety of legal issues along with them. Many countries now have breach notification laws where organizations are required to ...