In the world of cybersecurity, normalizing crises has been identified as a strategy to reduce the emotional impact of a bad incident. Experts in the field suggest that treating crisis response as a routine part of the job can help organizations better handle high-stress situations.
One piece of advice that has resonated with cybersecurity professionals is to approach crisis response as a regular part of their responsibilities, rather than a rare and unexpected event. This mindset shift can help establish a sense of preparedness and readiness among team members. Drawing inspiration from the world of emergency response, the analogy of building a fire department for cybersecurity incidents is often used. Just as firefighters are trained, equipped, and organized to respond to fires on a daily basis, cybersecurity teams can benefit from a similar level of readiness.
According to Ian Campbell, a security operations engineer with experience in emergency response dispatch, it is crucial not to suppress emotions in the aftermath of a cybersecurity incident. Drawing a comparison between the approaches of police and fire departments, Campbell highlights the importance of creating a supportive environment for team members to process their feelings. While the police department may adopt a more task-focused and detached approach to incidents, the fire department excels in providing spaces for pre- and post-incident discussions to address emotional responses.
Over his years in emergency response, Campbell learned that encouraging team members to share their emotions and experiences is essential for their well-being. The “keep it to yourself” mentality, commonly seen in high-pressure environments, can be detrimental to both individuals and the overall team dynamics. By implementing programs that promote open communication and emotional processing, organizations can create a healthier and more resilient workforce.
By normalizing crises and fostering a culture of openness and support, cybersecurity teams can build resilience and effectiveness in responding to incidents. Embracing crisis response as a routine part of the job, rather than an exceptional event, can help reduce the shock and stress associated with cybersecurity incidents. As the digital landscape continues to evolve and threats become more sophisticated, preparing for and managing crises proactively is essential for maintaining a strong security posture.