Incident & Breach Response , Managed Detection & Response (MDR) , Security Operations
Security Action Plans: Involving Law Enforcement
Kenrick Bagnall of the Toronto Police on Communicating With Law Enforcement After a BreachWhen creating a security action plan, not enough organizations include provisions for communicating with the police, says Kenrick Bagnall, a detective constable in the cybercrime unit of the Toronto Police Service.
See Also: Corelight's Brian Dye on NDR's Role in Defeating Ransomware
"There's a perception that getting law enforcement involved is bad for public perception and corporate reputation," Bagnall says. "Without law enforcement involved, there is no opportunity to introduce something punitive into the equation that will eventually, hopefully, provide some sort of deterrent."
In an interview at Information Security Media Group's recent Toronto Fraud and Breach Prevention Summit, where Bagnall was a featured speaker, he also discusses:
- The benefits of early engagement with law enforcement;
- Why lack of awareness is a key reason for failing to engage law enforcement;
- Why he believes involving police should be mandated.
Bagnall, who works in the Toronto Police Service's cyber crime intelligence services unit, has been with the police since 2006. Previously, he was a vice president of information technology with Capital G Bank Ltd.