What to do in the event of a data breach?

Even though it now appears there was no terrorist attack on a pump at an Illinois water utility, the SCADA infiltration scare was a reminder that data breaches can come from any number of angles.

The year 2011 has been pockmarked with one breach after another, with the Sony PlayStation Network and even security leader RSA getting hit.

So what's a company to do? Do you hide the fact that your network has been hacked or do you make that information public immediately to try to minimize damage in the court of public opinion? We have two experts who recommend taking different tacks, with one advocating that you don't say anything until forced to and the other insisting doing so is a critical first step.

To continue reading this article register now