Sequence of Events
If you’re like most, it probably took you 61 days to discover you even had a breach in the first place (we can help with that). Here’s the average time to respond:
- 61 days from occurrence to discovery
- 8 days from discovery to containment
- 40 days from discovery to investigation completed
- 41 days from discovery to notification
Sounding the Alarm
Lack of awareness is the #1 reason companies don’t have a response plan (CNS Group); and with reputational damage, system failure, compliance issues and a lack of IP all on the line, it’s time to change the conversation. Here’s some data to jumpstart those discussions (Cisco’s 2017 Security Capabilities Benchmark Study):
- Only 56% of alerts were investigated by companies, and 54% of those alerts were NOT remediated.
- 90% of surveyed companies said it took a security breach to drive cybersecurity.
It’s about practicing chaos. You’ll never be able to predict the type of breach you’ll fall victim to, but you can predict how you respond. And that response is comprised of the people you have in place, the processes you’ve implemented, and the technology that supports it all. The tide is changing (see below); don’t get left behind. Learn how we can help.
- 68% plan to enhance incident response capabilities in the next 12 months (Forbes).
- 60% of enterprise information security budgets will be allocated for rapid detection and response approaches by 2020 (Gartner).
We believe that data is the phenomenon of our time. It is the world’s new natural resource. It is the new basis of competitive advantage, and it is transforming every profession and industry. If all of this is true – even inevitable – then cyber crime, by definition, is the greatest threat to every profession, every industry, every company in the world.