Chapter 9. Closure

Introduction

An incident can be closed upon the completion of the investigation, the issuance of external notifications if warranted, and the implementation of all suitable security remediation measures. This phase provides closure for the incident by taking action against its cause and learning from it to improve current processes and procedures. The successful close of a data security incident involves several steps:

Get Managing Catastrophic Loss of Sensitive Data now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.