I’m currently sitting at this seminar, at RIT, (yea there’s lots of suits) and it’s so interesting how they are going over the things you should have ready in order to do effective incident response. It’s amazing the amount of things that are common sense. Did you know that the Secret Service, FBI, and US Atty General would rather you contact them sooner rather than later. They have tremendous resources, and depending where you are regionally, they DO have the time to help you. I am impressed they even will go as far as reviewing your policies.
If they do an investigation (after they determine a crime has taken place) they will help you determine what happened, what motives were at play, and if you have any liability.
Also, did you know that NYS law requires reporting of a breach in your network that has loss of Driver’s License, SSN, Credit Card or Address info? You must report this to the NYS Atty General if this happens to your business.