The US DOJ has released guidance advising companies on the best practices for victim response and reporting of cyber incidents.
On April 29, 2015, the Cybersecurity Unit of the DOJ Criminal Division released Best Practices for Victim Response and Reporting of Cyber Incidents (guidance), which is intended to assist companies in developing a response plan for reacting to a cyber incident, like a data security breach. The guidance was drafted by the DOJ's Cybersecurity Unit and offers perspective from federal prosecutors who have handled cyber investigations and prosecutions.
The guidance advises organizations to:
Identify which data, assets and services warrant the most protection and to develop an incident response plan accordingly.
Have an actionable plan in place before an incident occurs.
Have appropriate technology and services in place before an incident occurs.