Overview
What is cyber incident response and how does it work?
Cyber incident response is the set of actions taken to respond to and manage a data breach or cyber incident. Your policy may provide for certain cyber incident response services, and you should review your policy with your insurance agent or broker to determine any response services that are available to you.
Step 1
You can call the 24/7/365 Incident Response Hotline number contained within your policy documentation.
You will be asked to provide the following details:
- Your name
- Your contact details
- Your business name
- Your policy number
- A brief description of the incident and when it occurred
- Other information as applicable
Step 2
Notify your insurance agent, broker or insurer of a potential claim. Engaging incident response services is not reporting a claim or event to your insurer.
The notice of claim provisions in your policy state how you must report claims and events to your insurer.
The Process
What happens once I have engaged the cyber incident response service?
Every incident is different but generally the process will be as follows:
- The Incident Response Manager will set up an initial call so they can understand what has happened, what data is involved and when the incident was first discovered
- They will suggest actions you need to take to mitigate any immediate risks
- They will coordinate a second call between you and any specialist advisors (as required) with the aim of creating, scoping and agreeing to a response plan
- They will explain what happens next and how the process will flow over the next few hours and days
- They will assist with the implementation and coordination of the Response Plan
Advisors
Who are the specialist advisors?
If provided in your policy, you may have access to the following specialist advisors and services: