Pressure has been mounting on companies to "go public" with notice of large data breaches even quicker than they have been. In the forensics world, "faster" is not always "better" and can put inside investigations of such incidents at risk. Our friends at William Gallagher have posted an interesting analysis of the importance of post-breach analysis. We would add that pre-incident planning include careful provisions for post-breach forensics so that the notice tail does not wag the investigation dog.
The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.