Recent security incidents such as Talk Talk's have demonstrated the importance of having a robust incident management plan. Making complex decisions during an incident is very difficult; highly pressured situations can lead to bad decisions and negative business impacts.
It's important to work ahead of an incident - firms need to define the teams and roles involved in managing one, and how those teams will interact and make decisions. Firms must also ensure they have a good understanding of breach notifications; whether a firm needs need to notify individuals and/or the ICO and how quickly that notification takes place are critical calls in the context of potential GDPR fines.
No plan can anticipate all the variables of an incident, but a solid playbook can establish the framework needed to handle an incident smoothly. Organisations holding personal data such as CVs and salary information owe it to themselves and their clients to be prepared.