If an organization does not have an incident response plan in place before a cyber incident occurs, it may be too late to safeguard all critical assets. The goal of Incident Response Planning is to provide a comprehensive evaluation of a client’s current IRP and build the means to optimize its maturity. If not currently in place, the Advisory Services team will help construct a plan that is unique to the client’s needs and operations with respect to preparation, detection, containment, eradication, recovery, and lessons learned. Additionally, procedures will be suggested to keep the plan current and useable over time. Roles and responsibilities of stakeholders, escalation and communication processes, threat-specific playbooks, and other critical functions of the incident response process will be addressed.