This section helps you to understand what you should do to prepare for and what action to take, should your organization suffer an information security breach.
Incident response procedure for account compromise
The risk of theft or data compromise is an ongoing challenge. As 100 percent security cannot be guaranteed, it is necessary to have an incident response plan in place that is tailored to your business environment, in order to minimize disruption or losses to business operations in the event of an incident.
The 'What To Do If Compromised' is a useful guide containing: information on the steps needed to develop and implement effective security response procedures; how to define and quantify a security breach; the actions to take; and whom to contact.
By adhering to the appropriate security standards as defined in Visa's Account Information Security (AIS) program, the risk of security incidents occurring may be minimized.
What you should do
If you experience a suspected or confirmed security breach, you should:
|1. Immediately contain and limit the exposure|
|To prevent the further loss of data, conduct a thorough investigation of the suspected or confirmed loss or theft of account information within 24 hours of the compromise.
To facilitate the investigation:
|2. Contact Visa International Fraud Control & Investigations|