Incident Response Estimation and Preparedness
Here’s how we use Thrivaca for Incident Response (IR) Estimation and Preparedness. When we think about IR, we need to tie the CSIRP and our preparedness exercises to the real-world economic impacts of brand and reputation - hard costs such as notification expense, credit monitoring service expense, and associated costs.
Now, recognizing the difficulty of getting an accurate rendering of the costs associated with an IR scenario, Arx Nimbus has gathered case studies from a diverse set of sources, including papers published on residual effects of a wide variety of cyber-attacks and resulting losses, and very thorough research from wall street analysts on the effects of major breaches.
So, let’s look at valuation of the PII Breach risk scenario. Now as you’d expect, this is the highest impact risk area by far for most organizations. The risk impact self-insurance cost shown here is a function of: