In 2018, no executive that reads the papers can be unaware of the cybersecurity risks facing their organisation. With the size and frequency of data breaches increasing, companies should be prepared to handle one when it happens. The best way to cope with a security incident is to hit the ground running. A well-structured, efficient incident response plan helps to contain a breach and limit the damage. It’s a playbook that tells you what to do, who will do it, when, and how.
Unfortunately, these playbooks are scarcer than you might think. NTT Security surveyed 1350 non-IT business decision makers for their 2017 Global Risk:Value report on companies’ attitudes to cybersecurity and saw some concerning results. Only 48 per cent of respondents had an incident response plan, 31 per cent of companies were in the process of implementing one, and 10 per cent were still writing it. One in ten companies either didn’t plan to implement one or didn’t know whether they had a plan or not (which is as bad as not having one at all).
Read more about why it is of crucial importance to any organisation to have a well-structured, efficient incident response plan on Information Security Buzz.