Plans are useless, but planning is indispensable. Takeaways from the Beltug N-sight on cyber security response plans, 8 December 2021

Cyber attacks have increased dramatically over the past year. Almost every week, we read about organisations becoming the victims of hackers. Sometimes, the impacted activities are only unavailable for a short while, but in other cases, the company ends up paying a ransom after days of uncertainty and insecurity.


So most organisations don't need convincing that a cyber incident response plan (CIRP) is important. However, developing one and keeping it alive can become ‘just another task’ on a long to-do list.


In our session of 8 December 2021, we aimed to inspire participants with ways to keep sharp. First, we learned the fundamentals of a cyber incident response plan, with some key insights on what organisations tend to forget. Next, we discovered the updated version of the ‘Incident Management Guide’ from the Centre for Cybersecurity Belgium (CCB). Finally, we heard a real story about using the cyber incident response plan to create an effective security ecosystem. We ended with a short panel discussion with the different speakers, based on participants’ questions and comments.


The presentations and recording from the event are available to Beltug members below (after login).


All of the speakers agreed that embedding the plan, as a living document, within the organisation is important. There should be both communication about possible incidents before anything happens, and communication of the right information to the right people when something actually occurs. The plan should clarify this communication – including who to inform and what to do - based on importance of the incident. During an incident, saving time can literally save (ransomware) money. The speakers also agreed that, once you have made a plan, the next step is training on the different possibilities, and testing.


In parallel with the information you will find in the presentations, Beltug is delighted to share an example of a CIRP from one of our members. The anonymised document provides inspiration for managing contemporary cyber threats and incidents, in order to reduce the scope, impact and severity of cyber incidents.


A strong foundation for your cyber incident response plan

Phillip Larbey, Managing Principal – Head of VTRAC EMEA, Verizon (English)


Prepare, to be better prepared!

Karl Dobbelaere, Policy Manager, Centre for Cybersecurity Belgium (English)


Cyber security incident response as an enabler to Connect & Care

Christophe Van Pevenage, IT Security & Risk Manager, Etex (English)



Dear visitor,

Access to more information about this topic and/or to download the paper is easy and fast, but exclusively for Beltug members (just login to get access).

Beltug gathers a lot of information. Here you find the advantages of Beltug membership

The Beltug Team

Click here to login