In this video, Wes Spencer, Eric Tilds, and Chris Lair discuss the intricacies of incident response and the legal aspects of handling cybersecurity breaches. They emphasize the importance of forensic evidence and having a well-documented incident response plan, highlighting the potential pitfalls of MSPs handling incidents without proper expertise. The conversation also covers the significance of having attorneys involved in the process to ensure legal compliance and protect against potential liabilities.
The importance of forensics first in incident response to preserve evidence and understand the threat actor’s tactics.
The role of legal counsel in incident response to ensure compliance and proper communication with regulatory bodies.
Challenges and strategies for MSPs in handling ransomware attacks, including the significance of having an incident response plan and involving external experts when necessary.
