Root Cause Analysis (or RCA) is a vital tool for all businesses to use when evaluating incidents in the incident response process (or any major event for that matter). SMB’s need to understand not only their vulnerabilities or weaknesses, but what ultimately caused one to be realized as well. Root Cause Analysis can be easily done at a high level by investigating the following five questions:
Yes. It is a fairly straight forward process and should be used by SMB’s for any major incident you experience. Make sure you ask the five why’s as well to get to the true source or Root of the issue.
Related Term: Incident Response
Sources: National Institute of Standards and Technology, NIST
Additional Reading: Mind Tools Article on Root Cause Analysis
Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.
Spoiler alert: If you’re still using “password123” or “iloveyou” for your login… it’s time for an...
Read moreStop tricking employees. Start training them. Take Control of Your Security Awareness Training with a Platform...
Read moreGet sharper eyes on human risks, with the positive approach that beats traditional phish testing.