Does your organization have a formal process for managing public relations during and after a security incident?
Explanation
Managing the public narrative around an incident is the subject here, covering whether you have a formal process for communicating with media, customers, and other stakeholders during and after a security incident. Effective public relations management during incident recovery helps maintain trust, control the narrative, and minimize reputational damage while ensuring accurate and appropriate information is released.
Evidence could include a documented crisis communication plan, designated PR spokesperson roles, pre-approved statement templates, media training records for key personnel, or a communications workflow that shows approval chains for public statements during incidents.
Context
- Function
- RC: RECOVER
- Category
- RC.CO: Incident Recovery Communication
- Sub-Category
- Public relations are managed
Related questions
- Does your organization have a documented process for repairing reputation damage following a security incident?
- Does your organization have documented procedures for securely sharing recovery information and restoration progress with stakeholders during incident response?
- Does your organization have a formal process for updating senior leadership on the recovery status and progress during major security incidents?
- Does your organization adhere to contractually defined rules and protocols for incident information sharing with suppliers?
- Has your organization established a formal process for coordinating crisis communication with critical suppliers during security incidents?
- Does your organization have documented breach notification procedures that are followed during data breach recovery incidents?

