Skip to main content


#askSBS: Gaps in Incident Response Plan Testing



Question: What are some gaps you see when helping an organization test response plans?

Organizations don't know what they don't know. Never hesitate to reach out to your MSP, cyber insurance provider, or a cybersecurity expert to help you walk through testing your response plans. Utilizing outside, expert resources can help you see a different perspective when walking through the same response plans you've tested previously, as well as provide additional insight into whether or not your current response procedures will truly be effective during a real-world attack.

Additionally, bring in employees from other lines of business or department heads to make sure you're not ONLY looking at these incident scenarios from an IT or IS perspective, but also from the end-user perspective. So many times, the real-world implementation of something we in IT or IS think will be easy creates too much overhead for the end-user, is not practical, or would not work as intended. Feedback from other lines of business is very important when documenting response procedures.


Meet Our Expert! 

Jon Waldman, CISA, CRISCJon Waldman

As an experienced cybersecurity executive and educator, Jon Waldman has worked for over 15 years to help hundreds of organizations be able to identify and understand cybersecurity risks, allowing them to make better and more informed business decisions. Jon is the Chief People Officer for SBS CyberSecurity, as well as the President of the SBS Institute. 



You can ask our security experts your cybersecurity questions and they'll answer in an #askSBS blog post. Submit your questions in one of three ways:

  1. Submit your question here:
  2. Use #askSBS in your own post with a question.
  3. Comment on one of our #askSBS social media posts with your question(s).

We're looking forward to hearing and answering your questions!

Hacker Hour webinars are a series of free webinars hosted by SBS CyberSecurity. Unlike paid webinars, Hacker Hours are aimed to meet on a monthly basis to discuss cybersecurity issues and trends in an open format. Attendees are encouraged to join the conversation and get their questions answered. SBS will also offer products and services to help financial institutions with these specific issues.

Posted: Thursday, May 6, 2021
Categories: Blog, #askSBS