Real World Risk Management Practical HR Resources
Are you a new user?


Cyber Attacks: Prevention Is Key, But Do You Have A Response Plan?

An Ohio school district recently suffered a cyber attack that targeted its communication mechanisms. The attack shut down phones, internet, email, Wi-Fi networks, and Google Classroom. Staff members were unable to receive calls or emails from the school community.

School officials worked with forensic investigators to learn more about the attack and established a phone number outside of its network for emergency use. They communicated this number via their alert system and written letters given to students. "Washington Local Schools hit by cyber attack" (May 18, 2022).


In all types of organizations, maintaining a strong commitment to prevention is an important element in cybersecurity. However, as seen in this school breach, having a systems breach recovery plan in place is key to mitigating the extent of damage from a cyber attack.

After losing all communications, the school quickly implemented an alternative means through which they could receive emergency communications. In addition, they clearly had an alert system that was outside of their network, and thus unaffected by the systems breach.

When developing a cyber attack response plan, be sure to assess all areas of operation that could be a target - data files, communications, physical security, etc. Develop work-arounds for the most important areas of risk, like communications.

Other general elements to incorporate into your response plan include procedures for determining the extent of the breach; quarantining infected networks/computers; engaging the services of experts in cyber forensics; implementing necessary password changes; and communicating pertinent information to employees and others in your workplace community. If you do experience a cyber attack, take that opportunity to review the effectiveness of your procedures and revise them where needed.

Also, make sure you maintain clean backups of your systems, to facilitate a quick restoration.

Finally, your opinion is important to us. Please complete the opinion survey:

Ask Jack: Home Office Data Security First Steps

Jack McCalmon offers some data security steps for home offices.?

read more

Ask Jack: Should We Allow Employees To Play Games On Their Laptops?

An employer wants to keep employees happy. One idea is to allow employees to game during work breaks. Jack examines the cyber risks.

read more

Ask Jack: If There Is No Evidence Of Data Being Stolen, Can I Still Be Held Responsible?

Jack McCalmon talks about the importance of not just post-breach exposures, but pre-breach exposures as well.

read more

Ask Jack: What Prevention Steps Are Missing Regarding Cybersecurity?

Most cyber breaches are due to human error. Jack McCalmon explains why training and an "all of the above" strategy is the right move for cybersecurity.

read more